Lucene search
K

7 matches found

0day.today
0day.today
added 2023/04/06 12:0 a.m.272 views

Intern Record System v1.0 - SQL Injection (Unauthenticated) Vulnerability

Exploit Title: Intern Record System v1.0 - SQL Injection Unauthenticated Exploit Author: Hamdi Sevben Vendor Homepage: https://code-projects.org/intern-record-system-in-php-with-source-code/ Software Link: https://download-media.code-projects.org/2020/03/InternRecordSystemInPHPWithSourceCode.zip...

9.8CVSS9.2AI score0.05348EPSS
Exploits5
Packet Storm
Packet Storm
added 2023/04/06 12:0 a.m.234 views

Intern Record System 1.0 SQL Injection

Exploit Title: Intern Record System v1.0 - SQL Injection Unauthenticated Date: 2022-06-09 Exploit Author: Hamdi Sevben Vendor Homepage: https://code-projects.org/intern-record-system-in-php-with-source-code/ Software Link:...

9.8CVSS9.4AI score0.05348EPSS
Exploits5
Exploit DB
Exploit DB
added 2023/04/06 12:0 a.m.259 views

Intern Record System v1.0 - SQL Injection (Unauthenticated)

Exploit Title: Intern Record System v1.0 - SQL Injection Unauthenticated Date: 2022-06-09 Exploit Author: Hamdi Sevben Vendor Homepage: https://code-projects.org/intern-record-system-in-php-with-source-code/ Software Link:...

9.8CVSS9.7AI score0.05348EPSS
Exploits5
Circl
Circl
added 2023/02/17 4:13 p.m.24 views

CVE-2022-40347

creationtimestamp| type| source ---|---|--- 2023-02-17 16:13:09+00:00| seen| https://t.me/cibsecurity/58432 2023-04-06 00:00:00+00:00| exploited| https://www.exploit-db.com/exploits/51274...

9.8CVSS8.7AI score0.05348EPSS
Exploits5References2
NVD
NVD
added 2023/02/17 1:15 p.m.40 views

CVE-2022-40347

SQL Injection vulnerability in Intern Record System version 1.0 in /intern/controller.php in 'phone', 'email', 'deptType' and 'name' parameters, allows attackers to execute arbitrary code and gain sensitive information...

9.8CVSS10AI score0.05348EPSS
Exploits5References4
Vulnrichment
Vulnrichment
added 2023/02/17 12:0 a.m.7 views

CVE-2022-40347

SQL Injection vulnerability in Intern Record System version 1.0 in /intern/controller.php in 'phone', 'email', 'deptType' and 'name' parameters, allows attackers to execute arbitrary code and gain sensitive information...

8.6AI score0.05348EPSS
Exploits5References4
CVE
CVE
added 2023/02/17 12:0 a.m.49 views

CVE-2022-40347

CVE-2022-40347 concerns Intern Record System v1.0, exposing a critical SQL Injection in /intern/controller.php via the parameters phone , email , deptType , and name . The root cause is unsafely constructed queries that allow an attacker to access or modify data and potentially execute arbitrary ...

9.8CVSS10AI score0.05348EPSS
Exploits5References4Affected Software1
Rows per page
Query Builder