25 matches found
CVE-2024-7192
A vulnerability, which was classified as critical, was found in itsourcecode Society Management System 1.0. This affects an unknown part of the file /admin/student.php. The manipulation of the argument image leads to unrestricted upload. It is possible to initiate the attack remotely. The exploit...
CVE-2024-7191 itsourcecode Society Management System get_balance.php sql injection
A vulnerability, which was classified as critical, has been found in itsourcecode Society Management System 1.0. Affected by this issue is some unknown functionality of the file /admin/getbalance.php. The manipulation of the argument studentid leads to sql injection. The attack may be launched...
CVE-2024-7190
A vulnerability classified as critical was found in itsourcecode Society Management System 1.0. Affected by this vulnerability is an unknown functionality of the file /admin/getprice.php. The manipulation of the argument expensesid leads to sql injection. The attack can be launched remotely. The...
CVE-2024-7190 itsourcecode Society Management System get_price.php sql injection
A vulnerability classified as critical was found in itsourcecode Society Management System 1.0. Affected by this vulnerability is an unknown functionality of the file /admin/getprice.php. The manipulation of the argument expensesid leads to sql injection. The attack can be launched remotely. The...
CVE-2024-7190
The CVE-2024-7190 entry affects itsourcecode Society Management System 1.0, specifically the /admin/get_price.php endpoint where manipulating the expenses_id parameter enables SQL injection. The vulnerability is described as remote-exploitable with a publicly disclosed exploit; assessed severitie...