121 matches found
CVE-2023-1734 SourceCodester Young Entrepreneur E-Negosyo System unrestricted upload
A vulnerability classified as critical has been found in SourceCodester Young Entrepreneur E-Negosyo System 1.0. Affected is an unknown function of the file admin/products/controller.php?action=add. The manipulation of the argument image leads to unrestricted upload. It is possible to launch the...
CVE-2023-1734
SourceCodester Young Entrepreneur E-Negosyo System 1.0 contains a vulnerability where the image parameter in the endpoint admin/products/controller.php?action=add can be manipulated to perform an unrestricted file upload. The issue is exploitable remotely, enabling an attacker to upload arbitrary...
PT-2023-17200 · Sourcecodester · Sourcecodester Young Entrepreneur E-Negosyo System
Name of the Vulnerable Software and Affected Versions: SourceCodester Young Entrepreneur E-Negosyo System version 1.0 Description: A critical vulnerability was found in the SourceCodester Young Entrepreneur E-Negosyo System. The issue affects an unknown functionality of the file...
Young Entrepreneur E-Negosyo System SQL注入漏洞
Young Entrepreneur E-Negosyo System is a Young Entrepreneur E-Negosyo System for janobe individual developers. A security vulnerability exists in SourceCodester Young Entrepreneur E-Negosyo System version 1.0, which stems from an incorrect manipulation of the parameter phonenumber resulting in sq...
Young Entrepreneur E-Negosyo System SQL注入漏洞
Young Entrepreneur E-Negosyo System is a Young Entrepreneur E-Negosyo System for janobe individual developers. A security vulnerability exists in SourceCodester Young Entrepreneur E-Negosyo System version 1.0, which stems from an incorrect manipulation of the parameter UUSERNAME resulting in sql...
PT-2023-17201 · Sourcecodester · Sourcecodester Young Entrepreneur E-Negosyo System
Name of the Vulnerable Software and Affected Versions: SourceCodester Young Entrepreneur E-Negosyo System version 1.0 Description: A critical issue has been found in the system, affecting some unknown functionality of the file cart/controller.php?action=add. The manipulation of the PROID argument...
Young Entrepreneur E-Negosyo System 代码问题漏洞
Young Entrepreneur E-Negosyo System is a Young Entrepreneur E-Negosyo System for janobe individual developers. A security vulnerability exists in version 1.0 of the SourceCodester Young Entrepreneur E-Negosyo System that stems from an incorrect manipulation of the parameter image resulting in...
Young Entrepreneur E-Negosyo System SQL注入漏洞
Young Entrepreneur E-Negosyo System is a Young Entrepreneur E-Negosyo System for janobe individual developers. A security vulnerability exists in SourceCodester Young Entrepreneur E-Negosyo System version 1.0, which stems from an incorrect manipulation of the parameter search resulting in sql...
CVE-2023-1686
A vulnerability was found in SourceCodester Young Entrepreneur E-Negosyo System 1.0. It has been rated as problematic. This issue affects some unknown processing of the file bsenordering/admin/category/index.php of the component GET Parameter Handler. The manipulation of the argument view with th...
CVE-2023-1686
A vulnerability was found in SourceCodester Young Entrepreneur E-Negosyo System 1.0. It has been rated as problematic. This issue affects some unknown processing of the file bsenordering/admin/category/index.php of the component GET Parameter Handler. The manipulation of the argument view with th...
Cross site scripting
A vulnerability was found in SourceCodester Young Entrepreneur E-Negosyo System 1.0. It has been rated as problematic. This issue affects some unknown processing of the file bsenordering/admin/category/index.php of the component GET Parameter Handler. The manipulation of the argument view with th...
CVE-2023-1686 SourceCodester Young Entrepreneur E-Negosyo System GET Parameter index.php cross site scripting
A vulnerability was found in SourceCodester Young Entrepreneur E-Negosyo System 1.0. It has been rated as problematic. This issue affects some unknown processing of the file bsenordering/admin/category/index.php of the component GET Parameter Handler. The manipulation of the argument view with th...
CVE-2023-1686 SourceCodester Young Entrepreneur E-Negosyo System GET Parameter index.php cross site scripting
A vulnerability was found in SourceCodester Young Entrepreneur E-Negosyo System 1.0. It has been rated as problematic. This issue affects some unknown processing of the file bsenordering/admin/category/index.php of the component GET Parameter Handler. The manipulation of the argument view with th...
CVE-2023-1686
CVE-2023-1686 affects SourceCodester Young Entrepreneur E-Negosyo System 1.0, specifically the GET parameter handler in the file bsenordering/admin/category/index.php. The issue is a cross-site scripting (XSS) vulnerability caused by manipulating the view argument, e.g. via input like , which can...
PT-2023-17169 · Sourcecodester · Sourcecodester Young Entrepreneur E-Negosyo System
Name of the Vulnerable Software and Affected Versions: SourceCodester Young Entrepreneur E-Negosyo System version 1.0 Description: A problem was found in the processing of the file bsenordering/admin/category/index.php, specifically in the GET Parameter Handler component. The issue allows for cro...
Cross site scripting
A vulnerability classified as problematic has been found in SourceCodester Young Entrepreneur E-Negosyo System 1.0. This affects an unknown part of the file /bsenordering/index.php of the component GET Parameter Handler. The manipulation of the argument category with the input alert222 leads to...
CVE-2023-1485 SourceCodester Young Entrepreneur E-Negosyo System GET Parameter index.php cross site scripting
A vulnerability classified as problematic has been found in SourceCodester Young Entrepreneur E-Negosyo System 1.0. This affects an unknown part of the file /bsenordering/index.php of the component GET Parameter Handler. The manipulation of the argument category with the input alert222 leads to...
CVE-2023-1485
CVE-2023-1485 is an XSS vulnerability in SourceCodester Young Entrepreneur E-Negosyo System 1.0, arising from the GET parameter handler in /bsenordering/index.php where manipulating category with enables a remote XSS attack. Affected: SourceCodester Young Entrepreneur E-Negosyo System 1.0, file ...
SourceCodester Young Entrepreneur E-Negosyo System 跨站脚本漏洞
Young Entrepreneur E-Negosyo System is a Young Entrepreneur E-Negosyo System by janobe individual developers. A cross-site scripting vulnerability exists in version 1.0 of the SourceCodester Young Entrepreneur E-Negosyo System, which stems from a problem with the file /bsenordering/index.php, whe...
Sourcecodester E-Negosyo System SQL Injection (CVE-2021-41674)
An SQL injection vulnerability exists in Sourcecodester E-Negosyo System. Successful exploitation of this vulnerability would allow a remote attacker to execute arbitrary SQL commands on the affected system...