17 matches found
EUVD-2023-33862
Malicious code in bioql PyPI...
EUVD-2023-33861
Malicious code in bioql PyPI...
CVE-2023-2451
A vulnerability was found in SourceCodester Online DJ Management System 1.0 and classified as critical. This issue affects some unknown processing of the file /admin/bookings/viewdetails.php of the component GET Parameter Handler. The manipulation of the argument id leads to sql injection. The...
CVE-2023-2370
A vulnerability classified as critical has been found in SourceCodester Online DJ Management System 1.0. Affected is an unknown function of the file admin/events/manageevent.php of the component GET Parameter Handler. The manipulation of the argument id leads to sql injection. It is possible to...
Online DJ Management System Cross-Site Scripting Vulnerability
Online DJ Management System is an online DJ management system. A cross-site scripting vulnerability exists in Online DJ Management System version 1.0, which originates from cross-site scripting due to an incorrect manipulation of the parameter name. An attacker can exploit this vulnerability by...
Sql injection
A vulnerability was found in SourceCodester Online DJ Management System 1.0 and classified as critical. This issue affects some unknown processing of the file /admin/bookings/viewdetails.php of the component GET Parameter Handler. The manipulation of the argument id leads to sql injection. The...
CVE-2023-2451 SourceCodester Online DJ Management System GET Parameter view_details.php sql injection
A vulnerability was found in SourceCodester Online DJ Management System 1.0 and classified as critical. This issue affects some unknown processing of the file /admin/bookings/viewdetails.php of the component GET Parameter Handler. The manipulation of the argument id leads to sql injection. The...
CVE-2023-2451
Affected software: SourceCodester Online DJ Management System 1.0. Vulnerable component/file: GET Parameter Handler at /admin/bookings/view_details.php; vulnerable parameter: id. Root cause: improper handling of the id GET parameter leading to SQL injection. Impact: potential remote exploitation ...
CVE-2023-2371
A vulnerability classified as critical was found in SourceCodester Online DJ Management System 1.0. Affected by this vulnerability is an unknown functionality of the file admin/inquiries/viewdetails.php of the component GET Parameter Handler. The manipulation of the argument id leads to sql...
CVE-2023-2370
A vulnerability classified as critical has been found in SourceCodester Online DJ Management System 1.0. Affected is an unknown function of the file admin/events/manageevent.php of the component GET Parameter Handler. The manipulation of the argument id leads to sql injection. It is possible to...
Cross site scripting
A vulnerability, which was classified as problematic, has been found in SourceCodester Online DJ Management System 1.0. Affected by this issue is some unknown functionality of the file classes/Master.php?f=saveevent. The manipulation of the argument name leads to cross site scripting. The attack...
CVE-2023-2372 SourceCodester Online DJ Management System cross site scripting
A vulnerability, which was classified as problematic, has been found in SourceCodester Online DJ Management System 1.0. Affected by this issue is some unknown functionality of the file classes/Master.php?f=saveevent. The manipulation of the argument name leads to cross site scripting. The attack...
CVE-2023-2372
The CVE-2023-2372 issue affects SourceCodester Online DJ Management System 1.0, specifically the file path/classes/Master.php?f=save_event endpoint. The root cause is improper handling/manipulation of the name argument, enabling cross-site scripting (XSS). Exploitation is described as remote and ...
CVE-2023-2371 SourceCodester Online DJ Management System GET Parameter view_details.php sql injection
A vulnerability classified as critical was found in SourceCodester Online DJ Management System 1.0. Affected by this vulnerability is an unknown functionality of the file admin/inquiries/viewdetails.php of the component GET Parameter Handler. The manipulation of the argument id leads to sql...
CVE-2023-2371
CVE-2023-2371 affects SourceCodester Online DJ Management System 1.0, specifically the GET Parameter Handler in admin/inquiries/view_details.php. The vulnerability is an SQL injection caused by improper handling of the id parameter, allowing remote exploitation. Publicly disclosed exploit details...
CVE-2023-2370 SourceCodester Online DJ Management System GET Parameter manage_event.php sql injection
A vulnerability classified as critical has been found in SourceCodester Online DJ Management System 1.0. Affected is an unknown function of the file admin/events/manageevent.php of the component GET Parameter Handler. The manipulation of the argument id leads to sql injection. It is possible to...
CVE-2023-2370
CVE-2023-2370 affects SourceCodester Online DJ Management System 1.0, where the GET Parameter Handler in admin/events/manage_event.php is vulnerable due to improper handling of the id parameter, enabling SQL injection. The vulnerability allows remote exploitation and has been publicly disclosed. ...