11 matches found
File Tracker Manager System SQL Injection Vulnerability
File Tracker Manager System is a file tracker manager system. File Tracker Manager System v1.0 suffers from a SQL injection vulnerability, which originates from the lack of validation of the parameter newpassword in the file register/updatepassword.php against externally entered SQL statements. A...
CVE-2023-2678
A vulnerability has been found in SourceCodester File Tracker Manager System 1.0 and classified as problematic. This vulnerability affects unknown code of the file /filemanager/admin/saveuser.php of the component POST Parameter Handler. The manipulation of the argument firstname leads to cross si...
CVE-2023-2678 SourceCodester File Tracker Manager System POST Parameter save_user.php cross site scripting
A vulnerability has been found in SourceCodester File Tracker Manager System 1.0 and classified as problematic. This vulnerability affects unknown code of the file /filemanager/admin/saveuser.php of the component POST Parameter Handler. The manipulation of the argument firstname leads to cross si...
CVE-2023-2678
The CVE-2023-2678 entry concerns SourceCodester File Tracker Manager System 1.0. The vulnerability affects the file /file_manager/admin/save_user.php in the POST Parameter Handler, where manipulating the firstname parameter leads to cross-site scripting (XSS). Exploitation is remote and the explo...
CVE-2023-2643
A vulnerability classified as critical was found in SourceCodester File Tracker Manager System 1.0. This vulnerability affects unknown code of the file register/updatepassword.php of the component POST Parameter Handler. The manipulation of the argument newpassword leads to sql injection. The...
Sql injection
A vulnerability classified as critical was found in SourceCodester File Tracker Manager System 1.0. This vulnerability affects unknown code of the file register/updatepassword.php of the component POST Parameter Handler. The manipulation of the argument newpassword leads to sql injection. The...
CVE-2023-1302
A vulnerability, which was classified as problematic, was found in SourceCodester File Tracker Manager System 1.0. This affects an unknown part of the file normal/borrow1.php. The manipulation of the argument id with the input 1"alert1111 leads to cross site scripting. It is possible to initiate...
CVE-2023-1302 SourceCodester File Tracker Manager System borrow1.php cross site scripting
A vulnerability, which was classified as problematic, was found in SourceCodester File Tracker Manager System 1.0. This affects an unknown part of the file normal/borrow1.php. The manipulation of the argument id with the input 1"alert1111 leads to cross site scripting. It is possible to initiate...
Sql injection
A vulnerability was found in SourceCodester File Tracker Manager System 1.0. It has been classified as critical. Affected is an unknown function of the file /filemanager/login.php of the component POST Parameter Handler. The manipulation of the argument username leads to sql injection. It is...
CVE-2023-1294 SourceCodester File Tracker Manager System POST Parameter login.php sql injection
A vulnerability was found in SourceCodester File Tracker Manager System 1.0. It has been classified as critical. Affected is an unknown function of the file /filemanager/login.php of the component POST Parameter Handler. The manipulation of the argument username leads to sql injection. It is...
CVE-2023-1294
CVE-2023-1294 affects SourceCodester File Tracker Manager System 1.0. The vulnerability arises in the POST Parameter Handler, specifically the /file_manager/login.php file, where manipulating the username parameter leads to SQL injection. It is exploitable remotely and has been publicly disclosed...