CVE-2024-1199 CodeAstro Employee Task Management System attendance-info.php denial of service

A vulnerability has been found in CodeAstro Employee Task Management System 1.0 and classified as problematic. Affected by this vulnerability is an unknown functionality of the file \employee-tasks-php\attendance-info.php. The manipulation of the argument atenid leads to denial of service. The...

Sql injection

SQL Injection vulnerability in teacher-info.php in phpgurukul Teacher Subject Allocation Management System 1.0 allows attackers to obtain sensitive information via the 'editid' parameter...

phpgurukul Teacher Subject Allocation System 安全漏洞

Teacher Subject Allocation Management System a teacher subject allocation management system. The Teacher Subject Allocation Management System suffers from a SQL injection vulnerability that stems from a lack of validation of externally entered SQL statements in the editid parameter of...

PT-2023-29807 · Unknown · Phpgurukul Teacher Subject Allocation Management System

Name of the Vulnerable Software and Affected Versions: phpgurukul Teacher Subject Allocation Management System version 1.0 Description: The issue allows attackers to obtain sensitive information. It involves a SQL Injection vulnerability in the teacher-info.php file, where the editid parameter is...

PT-2023-29356 · Unknown · Online Bus Booking System

Name of the Vulnerable Software and Affected Versions: Online Bus Booking System version 1.0 Description: The issue concerns multiple Unauthenticated SQL Injection vulnerabilities. Specifically, the date parameter of the "bus info.php" resource does not validate the characters received, and they...

Hospital Management Center SQL Injection Vulnerability

Hospital Management Center is a web system that helps manage healthcare-related information and helps healthcare providers do their jobs efficiently. hospital Management Center is vulnerable to a SQL injection vulnerability that originates in an unknown function in the file patient-info.php Lack ...

Sql injection

A vulnerability classified as critical has been found in Hospital Management Center. Affected is an unknown function of the file patient-info.php. The manipulation of the argument ptid leads to sql injection. It is possible to launch the attack remotely. The exploit has been disclosed to the publ...

CVE-2022-4012 Hospital Management Center patient-info.php sql injection

A vulnerability classified as critical has been found in Hospital Management Center. Affected is an unknown function of the file patient-info.php. The manipulation of the argument ptid leads to sql injection. It is possible to launch the attack remotely. The exploit has been disclosed to the publ...

PT-2022-10761 · Unknown · Semcms Shop

Name of the Vulnerable Software and Affected Versions: SEMCMS SHOP version 1.1 Description: The issue is related to SQL Injection, which can be exploited via the Ant Info.php file. Recommendations: For SEMCMS SHOP version 1.1, consider restricting access to the Ant Info.php file as a temporary...

CVE-2022-36530

An issue was discovered in rageframe2 2.6.37. There is a XSS vulnerability in the user agent related parameters of the info.php page...

CVE-2022-36530

An issue was discovered in rageframe2 2.6.37. There is a XSS vulnerability in the user agent related parameters of the info.php page...

CVE-2022-36530

An issue was discovered in rageframe2 2.6.37. There is a XSS vulnerability in the user agent related parameters of the info.php page...

Code injection

An issue was discovered in rageframe2 2.6.37. There is a XSS vulnerability in the user agent related parameters of the info.php page...

CVE-2022-36530

CVE-2022-36530 affects rageframe2 version 2.6.37, describing an XSS vulnerability in the user agent related parameters of the info.php page. The cited sources consistently indicate this is a cross-site scripting issue, but do not provide explicit exploit details, affected build ranges beyond 2.6....

rageframe2 跨站脚本漏洞

rageframe2 is a rapid development application engine based on the Yii2 Advanced Framework by the individual developer Jianyan74. A security vulnerability exists in rageframe2 version 2.6.37, which is caused by an XSS vulnerability in the user-agent related parameters of the info.php page...

Dolibarr SQL injection vulnerability in adherents/subscription/info.php

SQL injection vulnerability in adherents/subscription/info.php in Dolibarr ERP/CRM version 6.0.4 allows remote attackers to execute arbitrary SQL commands via the rowid parameter...

GHSA-7789-V767-37R5 Dolibarr SQL injection vulnerability in adherents/subscription/info.php

SQL injection vulnerability in adherents/subscription/info.php in Dolibarr ERP/CRM version 6.0.4 allows remote attackers to execute arbitrary SQL commands via the rowid parameter...

CVE-2021-43683

pictshare v1.5 is affected by a Cross Site Scripting XSS vulnerability in api/info.php. The exit function will terminate the script and print the message which has $REQUEST'hash'...

Cross site scripting

pictshare v1.5 is affected by a Cross Site Scripting XSS vulnerability in api/info.php. The exit function will terminate the script and print the message which has $REQUEST'hash'...

CVE-2021-43683

pictshare v1.5 is affected by a Cross Site Scripting XSS vulnerability in api/info.php. The exit function will terminate the script and print the message which has $REQUEST'hash'...