121 matches found
Young Entrepreneur E-Negosyo System 跨站脚本漏洞
Young Entrepreneur E-Negosyo System is a Young Entrepreneur E-Negosyo System by janobe individual developers. A cross-site scripting vulnerability exists in Young Entrepreneur E-Negosyo System version 1.0. An attacker can create a specially crafted URL and send it to a victim to obtain their...
CVE-2023-1738
A vulnerability has been found in SourceCodester Young Entrepreneur E-Negosyo System 1.0 and classified as critical. This vulnerability affects unknown code of the file index.php?q=product. The manipulation of the argument search leads to sql injection. The attack can be initiated remotely...
Sql injection
A vulnerability has been found in SourceCodester Young Entrepreneur E-Negosyo System 1.0 and classified as critical. This vulnerability affects unknown code of the file index.php?q=product. The manipulation of the argument search leads to sql injection. The attack can be initiated remotely...
CVE-2023-1738 SourceCodester Young Entrepreneur E-Negosyo System sql injection
A vulnerability has been found in SourceCodester Young Entrepreneur E-Negosyo System 1.0 and classified as critical. This vulnerability affects unknown code of the file index.php?q=product. The manipulation of the argument search leads to sql injection. The attack can be initiated remotely...
CVE-2023-1738
CVE-2023-1738 affects SourceCodester Young Entrepreneur E-Negosyo System v1.0, specifically the index.php?q=product endpoint. The root cause is improper handling/manipulation of the search parameter, leading to SQL injection. The vulnerability is exploitable remotely and has been classified with ...
CVE-2023-1737
A vulnerability, which was classified as critical, was found in SourceCodester Young Entrepreneur E-Negosyo System 1.0. This affects an unknown part of the file login.php. The manipulation of the argument UUSERNAME leads to sql injection. It is possible to initiate the attack remotely. The...
CVE-2023-1736
A vulnerability, which was classified as critical, has been found in SourceCodester Young Entrepreneur E-Negosyo System 1.0. Affected by this issue is some unknown functionality of the file cart/controller.php?action=add. The manipulation of the argument PROID leads to sql injection. The identifi...
CVE-2023-1735
A vulnerability classified as critical was found in SourceCodester Young Entrepreneur E-Negosyo System 1.0. Affected by this vulnerability is an unknown functionality of the file passwordrecover.php. The manipulation of the argument phonenumber leads to sql injection. The attack can be launched...
Sql injection
A vulnerability, which was classified as critical, was found in SourceCodester Young Entrepreneur E-Negosyo System 1.0. This affects an unknown part of the file login.php. The manipulation of the argument UUSERNAME leads to sql injection. It is possible to initiate the attack remotely. The...
Sql injection
A vulnerability, which was classified as critical, has been found in SourceCodester Young Entrepreneur E-Negosyo System 1.0. Affected by this issue is some unknown functionality of the file cart/controller.php?action=add. The manipulation of the argument PROID leads to sql injection. The identifi...
CVE-2023-1737
CVE-2023-1737 affects SourceCodester Young Entrepreneur E-Negosyo System 1.0, specifically login.php where the U_USERNAME parameter leads to SQL injection. The vulnerability can be triggered remotely over the network; exploitation status is not documented in the provided sources. Mitigation sugge...
CVE-2023-1737 SourceCodester Young Entrepreneur E-Negosyo System login.php sql injection
A vulnerability, which was classified as critical, was found in SourceCodester Young Entrepreneur E-Negosyo System 1.0. This affects an unknown part of the file login.php. The manipulation of the argument UUSERNAME leads to sql injection. It is possible to initiate the attack remotely. The...
CVE-2023-1736 SourceCodester Young Entrepreneur E-Negosyo System sql injection
A vulnerability, which was classified as critical, has been found in SourceCodester Young Entrepreneur E-Negosyo System 1.0. Affected by this issue is some unknown functionality of the file cart/controller.php?action=add. The manipulation of the argument PROID leads to sql injection. The identifi...
CVE-2023-1736
CVE-2023-1736 affects SourceCodester Young Entrepreneur E-Negosyo System 1.0. Affected functionality is in cart/controller.php?action=add, where manipulating the PROID parameter leads to SQL injection. Documented impact is high (per CVSS metrics in the initial entry), with no exploitation details...
CVE-2023-1735 SourceCodester Young Entrepreneur E-Negosyo System passwordrecover.php sql injection
A vulnerability classified as critical was found in SourceCodester Young Entrepreneur E-Negosyo System 1.0. Affected by this vulnerability is an unknown functionality of the file passwordrecover.php. The manipulation of the argument phonenumber leads to sql injection. The attack can be launched...
CVE-2023-1735 SourceCodester Young Entrepreneur E-Negosyo System passwordrecover.php sql injection
A vulnerability classified as critical was found in SourceCodester Young Entrepreneur E-Negosyo System 1.0. Affected by this vulnerability is an unknown functionality of the file passwordrecover.php. The manipulation of the argument phonenumber leads to sql injection. The attack can be launched...
CVE-2023-1735
CVE-2023-1735 affects SourceCodester Young Entrepreneur E-Negosyo System 1.0. The vulnerability is in the file passwordrecover.php, where manipulating the URL parameter phonenumber leads to a SQL injection. The issue can be exploited remotely and, per the CVE entry, impacts confidentiality, integ...
CVE-2023-1734
A vulnerability classified as critical has been found in SourceCodester Young Entrepreneur E-Negosyo System 1.0. Affected is an unknown function of the file admin/products/controller.php?action=add. The manipulation of the argument image leads to unrestricted upload. It is possible to launch the...
CVE-2023-1734
A vulnerability classified as critical has been found in SourceCodester Young Entrepreneur E-Negosyo System 1.0. Affected is an unknown function of the file admin/products/controller.php?action=add. The manipulation of the argument image leads to unrestricted upload. It is possible to launch the...
Design/Logic Flaw
A vulnerability classified as critical has been found in SourceCodester Young Entrepreneur E-Negosyo System 1.0. Affected is an unknown function of the file admin/products/controller.php?action=add. The manipulation of the argument image leads to unrestricted upload. It is possible to launch the...