5 matches found
Sql injection
A vulnerability was found in SourceCodester Employee Management System 1.0. It has been classified as critical. Affected is an unknown function of the file editprofile.php. The manipulation of the argument txtfullname leads to sql injection. It is possible to launch the attack remotely. The explo...
CVE-2024-1007 SourceCodester Employee Management System edit_profile.php sql injection
A vulnerability was found in SourceCodester Employee Management System 1.0. It has been classified as critical. Affected is an unknown function of the file editprofile.php. The manipulation of the argument txtfullname leads to sql injection. It is possible to launch the attack remotely. The explo...
CVE-2009-3359
Multiple cross-site scripting XSS vulnerabilities in Match Agency BiZ 1.0 allow remote attackers to inject arbitrary web script or HTML via the 1 important parameter to editprofile.php and 2 pid parameter to report.php...
Match Agency BiZ 1.0 Cross Site Scripting
/ | | \ \ / / | | \ \ / / | |\ \ /\ / / | | | | | | \ V /| | | \ V V / | | || | || / ||| // ,|, | |/ | | | |/ / | ' \ | | / | | | | | | | |||,|| || || Match Agency BiZ 1.0 Remote XSS Vulnerabilities Discovered By : Moudi Contact : Download : http://www.matchagency.biz/ Greetings : Mizoz,...
CVE-2006-3555
Multiple cross-site scripting XSS vulnerabilities in submit.php in PHP-Fusion before 6.01.3 allow remote attackers to inject arbitrary web script or HTML by using editprofile.php to upload a 1 avatar or 2 forum image attachment that has a .gif or .jpg extension, and begins with a GIF header...