CVE-2024-37872

SQL injection vulnerability in process.php in Itsourcecode Billing System in PHP 1.0 allows remote attackers to execute arbitrary SQL commands via the username parameter...

CVE-2024-37872

Affected software: Itsourcecode Billing System, version 1.0. Vulnerability: SQL injection in process.php that lets remote attackers execute arbitrary SQL commands via the username parameter. Impact / scope (as stated): Remote SQL execution with high likelihood of data compromise; no availability ...

CVE-2024-37871

SQL injection vulnerability in login.php in Itsourcecode Online Discussion Forum Project in PHP with Source Code 1.0 allows remote attackers to execute arbitrary SQL commands via the email parameter...

CVE-2024-6453

A vulnerability was found in itsourcecode Farm Management System 1.0. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /quarantine.php?id=3. The manipulation of the argument pigno/breed/reason leads to sql injection. The attack can be launch...

CVE-2024-6453

CVE-2024-6453 affects itsourcecode Farm Management System 1.0. A SQL injection vulnerability exists in the file /quarantine.php?id=3 via manipulation of the parameters pigno, breed, or reason. The issue stems from lack of input validation, enabling remote exploitation. The attack vector is NETWOR...

CVE-2024-6453 itsourcecode Farm Management System sql injection

A vulnerability was found in itsourcecode Farm Management System 1.0. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /quarantine.php?id=3. The manipulation of the argument pigno/breed/reason leads to sql injection. The attack can be launch...

CVE-2024-6453 itsourcecode Farm Management System sql injection

A vulnerability was found in itsourcecode Farm Management System 1.0. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /quarantine.php?id=3. The manipulation of the argument pigno/breed/reason leads to sql injection. The attack can be launch...

CVE-2024-6373

A vulnerability has been found in itsourcecode Online Food Ordering System up to 1.0 and classified as critical. This vulnerability affects unknown code of the file /addproduct.php. The manipulation of the argument photo leads to unrestricted upload. The attack can be initiated remotely. The...

CVE-2024-6371

A vulnerability, which was classified as critical, has been found in itsourcecode Pool of Bethesda Online Reservation System 1.0. Affected by this issue is some unknown functionality of the file controller.php. The manipulation of the argument rmtypeid leads to sql injection. The attack may be...

CVE-2024-6373 itsourcecode Online Food Ordering System addproduct.php unrestricted upload

A vulnerability has been found in itsourcecode Online Food Ordering System up to 1.0 and classified as critical. This vulnerability affects unknown code of the file /addproduct.php. The manipulation of the argument photo leads to unrestricted upload. The attack can be initiated remotely. The...

CVE-2024-6372

Summary (CVE-2024-6372): A SQL injection vulnerability exists in Tailoring Management System v1.0, affecting the file customeradd.php. The issue is triggered by manipulating arguments including fullname, address, phonenumber, sex, email, city, and comment, which can be exploited remotely. Several...

CVE-2024-6371 itsourcecode Pool of Bethesda Online Reservation System controller.php sql injection

A vulnerability, which was classified as critical, has been found in itsourcecode Pool of Bethesda Online Reservation System 1.0. Affected by this issue is some unknown functionality of the file controller.php. The manipulation of the argument rmtypeid leads to sql injection. The attack may be...

CVE-2024-6371

CVE-2024-6371 affects the Pool of Bethesda Online Reservation System v1.0. The vulnerability is a SQL injection in the rmtype_id parameter of controller.php, exploitable remotely. Multiple sources describe it as critical/high-impact, with the potential for unauthorized data exposure or manipulati...

CVE-2024-6371 itsourcecode Pool of Bethesda Online Reservation System controller.php sql injection

A vulnerability, which was classified as critical, has been found in itsourcecode Pool of Bethesda Online Reservation System 1.0. Affected by this issue is some unknown functionality of the file controller.php. The manipulation of the argument rmtypeid leads to sql injection. The attack may be...

PT-2024-37577 · Unknown · Sourcecodester Online Food Ordering System

Name of the Vulnerable Software and Affected Versions: itsourcecode Online Food Ordering System version 1.0 Description: A critical issue has been found in the itsourcecode Online Food Ordering System, affecting the file /addproduct.php. The manipulation of the photo argument leads to unrestricte...

CVE-2024-6308

A vulnerability was found in itsourcecode Simple Online Hotel Reservation System 1.0. It has been declared as critical. This vulnerability affects unknown code of the file index.php. The manipulation of the argument username leads to sql injection. The attack can be initiated remotely. The exploi...

CVE-2024-6308 itsourcecode Simple Online Hotel Reservation System index.php sql injection

A vulnerability was found in itsourcecode Simple Online Hotel Reservation System 1.0. It has been declared as critical. This vulnerability affects unknown code of the file index.php. The manipulation of the argument username leads to sql injection. The attack can be initiated remotely. The exploi...

CVE-2024-6253

A vulnerability was found in itsourcecode Online Food Ordering System 1.0 and classified as critical. Affected by this issue is some unknown functionality of the file /purchase.php. The manipulation of the argument customer leads to sql injection. The attack may be launched remotely. The exploit...

CVE-2024-6253

A vulnerability was found in itsourcecode Online Food Ordering System 1.0 and classified as critical. Affected by this issue is some unknown functionality of the file /purchase.php. The manipulation of the argument customer leads to sql injection. The attack may be launched remotely. The exploit...

CVE-2024-6253

The CVE-2024-6253 entry concerns itsourcecode Online Food Ordering System 1.0, where the /purchase.php endpoint is vulnerable via manipulation of the customer parameter, leading to SQL injection. The issue is exploitable remotely, with publicly disclosed exploits. Affected component is the /purch...