30 matches found
CVE-2024-44630
Multiple parameters in register.php in PHPGurukul Student Record System 3.20 are vulnerable to SQL injection. These include: c-full, fname, mname,lname, gname, ocp, nation, mobno, email, board1, roll1, pyear1, board2, roll2, pyear2, sub1,marks1, sub2, course-short, income, category, ph, country,...
Code-Projects Traffic Offense Reporting System 代码注入漏洞
Traffic Offense Reporting System is a traffic violation reporting system. Traffic Offense Reporting System has a cross-site scripting vulnerability that originates from the parameter offenseid/vehicleno/driverlicense/name/address/gender/officer in the file /save-reported.php. The lack of effectiv...
CVE-2024-55104
Online Nurse Hiring System v1.0 was discovered to contain multiple SQL injection vulnerabilities in the component /admin/add-nurse.php via the gender and emailid parameters...
CVE-2024-55104
Online Nurse Hiring System v1.0 was discovered to contain multiple SQL injection vulnerabilities in the component /admin/add-nurse.php via the gender and emailid parameters...
CVE-2024-55104
CVE-2024-55104 affects Online Nurse Hiring System v1.0. The vulnerability is a set of SQL injection flaws in the /admin/add-nurse.php component, exploitable via the gender and emailid parameters. The CVSSv3.1 metrics indicate a High severity (7.2) with network attack vector, low attack complexity...
PT-2024-36482 · Unknown · Online Nurse Hiring System
Name of the Vulnerable Software and Affected Versions: Online Nurse Hiring System version 1.0 Description: The issue is related to multiple SQL injection vulnerabilities found in the /admin/add-nurse.php component of the system. These vulnerabilities can be exploited via the gender and emailid...
Online Nurse Hiring System 安全漏洞
PHPGurukul Online Nurse Hiring System is an online nurse hiring system from PHPGurukul. A security vulnerability exists in Online Nurse Hiring System v1.0, which stems from an SQL injection vulnerability found in the component /admin/add-nurse.php via the gender and emailid parameters...
CVE-2024-55104
Online Nurse Hiring System v1.0 was discovered to contain multiple SQL injection vulnerabilities in the component /admin/add-nurse.php via the gender and emailid parameters...
Code-Projects Simple Car Rental System 注入漏洞
Code-Projects Simple Car Rental System is an open source car rental software from Code-Projects. An injection vulnerability exists in Code-Projects Simple Car Rental System version 1.0, which stems from incorrect manipulation of the parameters fname, idno, gender, email, phone, and location can...
PT-2024-17147 · Unknown · Code-Projects Simple Car Rental System
Name of the Vulnerable Software and Affected Versions: code-projects Simple Car Rental System version 1.0 Description: A critical issue has been found in the code-projects Simple Car Rental System. The problem is related to an unknown function of the file /book car.php, where the manipulation of...
CVE-2024-3540
A vulnerability was found in Campcodes Church Management System 1.0. It has been rated as critical. Affected by this issue is some unknown functionality of the file /admin/addsundaysch.php. The manipulation of the argument Gender leads to sql injection. The attack may be launched remotely. The...
PT-2024-26479 · Unknown · Campcodes Church Management System
Name of the Vulnerable Software and Affected Versions: Campcodes Church Management System version 1.0 Description: A critical issue has been found in the system, affecting some unknown functionality of the file /admin/add sundaysch.php. The manipulation of the Gender argument leads to sql...
Church Management System 安全漏洞
Church Management System is a church management system. A security vulnerability exists in version 1.0 of the Church Management System, which stems from an SQL injection vulnerability in the Gender parameter of the /admin/addsundaysch.php file...
PT-2023-29181 · Unknown · Online Art Gallery
Name of the Vulnerable Software and Affected Versions: Online Art Gallery version 1.0 Description: The issue concerns multiple Unauthenticated SQL Injection vulnerabilities. Specifically, the gender parameter of the header.php resource does not validate the characters received and they are sent...
CVE-2023-38760
SQL injection vulnerability in ChurchCRM v.5.0.0 allows a remote attacker to obtain sensitive information via the role and gender parameters within the /QueryView.php component...
CVE-2023-38760
SQL injection vulnerability in ChurchCRM v.5.0.0 allows a remote attacker to obtain sensitive information via the role and gender parameters within the /QueryView.php component...
CVE-2023-24732
Simple Customer Relationship Management System v1.0 as discovered to contain a SQL injection vulnerability via the gender parameter in the user profile update function...
Sql injection
Simple Customer Relationship Management System v1.0 as discovered to contain a SQL injection vulnerability via the gender parameter in the user profile update function...
Online Diagnostic Lab Management System 跨站脚本漏洞
Online Diagnostic Lab Management System is an online diagnostic lab management system. A cross-site scripting vulnerability exists in Online Diagnostic Lab Management System version 1.0, which originates from an XSS via the firstname, address, middlename, lastname , gender, email, contact...
WordPress plugin WP Athletics 跨站脚本漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation. WordPress is a blogging platform developed using the PHP language. WordPress plugin is an application plugin. WordPress WP Athletics plugin version 1.1.7 and prior versions are vulnerable to a cross-site scripting...