187 matches found
CVE-2024-4293 PHPGurukul Doctor Appointment Management System appointment-bwdates-reports-details.php cross site scripting
A vulnerability classified as problematic was found in PHPGurukul Doctor Appointment Management System 1.0. Affected by this vulnerability is an unknown functionality of the file appointment-bwdates-reports-details.php. The manipulation of the argument fromdate/todate leads to cross site scriptin...
CVE-2024-28613
SQL Injection vulnerability in PHP Task Management System v.1.0 allows a remote attacker to escalate privileges and obtain sensitive information via the taskid parameter of the task-details.php, and edit-task.php component...
CVE-2024-2927
A vulnerability was found in code-projects Mobile Shop 1.0. It has been classified as critical. Affected is an unknown function of the file Details.php of the component Login Page. The manipulation of the argument id leads to sql injection. It is possible to launch the attack remotely. The exploi...
CVE-2024-2927
A vulnerability was found in code-projects Mobile Shop 1.0. It has been classified as critical. Affected is an unknown function of the file Details.php of the component Login Page. The manipulation of the argument id leads to sql injection. It is possible to launch the attack remotely. The exploi...
CVE-2024-2927 code-projects Mobile Shop Login Page Details.php sql injection
A vulnerability was found in code-projects Mobile Shop 1.0. It has been classified as critical. Affected is an unknown function of the file Details.php of the component Login Page. The manipulation of the argument id leads to sql injection. It is possible to launch the attack remotely. The exploi...
CVE-2024-2927
CVE-2024-2927 affects code-projects Mobile Shop 1.0, specifically the Login Page’s Details.php. The vulnerability is a SQL injection triggered by manipulating the id parameter, with remote-exploitability and a critical impact profile per the sources. Multiple advisories (NVD, Red Hat CVE, CVE lis...
CVE-2024-2927 code-projects Mobile Shop Login Page Details.php sql injection
A vulnerability was found in code-projects Mobile Shop 1.0. It has been classified as critical. Affected is an unknown function of the file Details.php of the component Login Page. The manipulation of the argument id leads to sql injection. It is possible to launch the attack remotely. The exploi...
CVE-2024-2718 Campcodes Complete Online DJ Booking System booking-bwdates-reports-details.php cross site scripting
A vulnerability was found in Campcodes Complete Online DJ Booking System 1.0. It has been rated as problematic. This issue affects some unknown processing of the file /admin/booking-bwdates-reports-details.php. The manipulation of the argument fromdate leads to cross site scripting. The attack ma...
CVE-2024-2718 Campcodes Complete Online DJ Booking System booking-bwdates-reports-details.php cross site scripting
A vulnerability was found in Campcodes Complete Online DJ Booking System 1.0. It has been rated as problematic. This issue affects some unknown processing of the file /admin/booking-bwdates-reports-details.php. The manipulation of the argument fromdate leads to cross site scripting. The attack ma...
CVE-2024-2575 SourceCodester Employee Task Management System task-details.php authorization
A vulnerability, which was classified as critical, has been found in SourceCodester Employee Task Management System 1.0. Affected by this issue is some unknown functionality of the file /task-details.php. The manipulation of the argument taskid leads to authorization bypass. The attack may be...
CVE-2024-2572 SourceCodester Employee Task Management System task-details.php redirect
A vulnerability was found in SourceCodester Employee Task Management System 1.0. It has been rated as critical. This issue affects some unknown processing of the file /task-details.php. The manipulation leads to execution after redirect. The attack may be initiated remotely. The exploit has been...
CVE-2024-2572 SourceCodester Employee Task Management System task-details.php redirect
A vulnerability was found in SourceCodester Employee Task Management System 1.0. It has been rated as critical. This issue affects some unknown processing of the file /task-details.php. The manipulation leads to execution after redirect. The attack may be initiated remotely. The exploit has been...
Employee Task Management System Security Vulnerability
Employee Task Management System is an employee task management system by Carlo Montero Personal Developer. A security vulnerability exists in Employee Task Management System version 1.0, which stems from unknown processing in /task-details.php that results in a redirect...
CVE-2023-6076
A vulnerability classified as problematic was found in PHPGurukul Restaurant Table Booking System 1.0. Affected by this vulnerability is an unknown functionality of the file booking-details.php of the component Reservation Status Handler. The manipulation of the argument bid leads to information...
Information disclosure
A vulnerability classified as problematic was found in PHPGurukul Restaurant Table Booking System 1.0. Affected by this vulnerability is an unknown functionality of the file booking-details.php of the component Reservation Status Handler. The manipulation of the argument bid leads to information...
Cross-site Scripting (XSS)
concrete5/concrete5 is vulnerable to stored Cross-site Scripting XSS. The vulnerability exists in details.php due to lack of sanitation when adding tags on uploaded files which allows an attacker to inject and execute arbitrary JavaScript...
CVE-2023-2208
A vulnerability, which was classified as critical, has been found in Campcodes Retro Basketball Shoes Online Store 1.0. This issue affects some unknown processing of the file details.php. The manipulation of the argument id leads to sql injection. The attack may be initiated remotely. The exploit...
CVE-2023-2208
A vulnerability, which was classified as critical, has been found in Campcodes Retro Basketball Shoes Online Store 1.0. This issue affects some unknown processing of the file details.php. The manipulation of the argument id leads to sql injection. The attack may be initiated remotely. The exploit...
Sql injection
A vulnerability, which was classified as critical, has been found in Campcodes Retro Basketball Shoes Online Store 1.0. This issue affects some unknown processing of the file details.php. The manipulation of the argument id leads to sql injection. The attack may be initiated remotely. The exploit...
Campcodes Retro Basketball Shoes Online Store SQL注入漏洞
Campcodes Retro Basketball Shoes Online Store is an online store for retro basketball shoes from Campcodes. A SQL injection vulnerability exists in Campcodes Retro Basketball Shoes Online Store version 1.0, which stems from a SQL injection vulnerability in the parameter id of the file details.php...