6 matches found
CVE-2024-11074 itsourcecode Tailoring Management System incadd.php sql injection
A vulnerability classified as critical was found in itsourcecode Tailoring Management System 1.0. This vulnerability affects unknown code of the file /incadd.php. The manipulation of the argument inccat/desc/date/amount leads to sql injection. The attack can be initiated remotely. The exploit has...
CVE-2024-8171
CVE-2024-8171 affects the Tailoring Management System v1.0. The vulnerability resides in an insecure handling of the parameter title in the file staffcatedit.php , enabling SQL injection when the parameter is manipulated. This is described as a remotely initiable vulnerability with the exploit pu...
CVE-2024-7506
A vulnerability has been found in itsourcecode Tailoring Management System 1.0 and classified as critical. Affected by this vulnerability is an unknown functionality of the file /setlogo.php. The manipulation of the argument bgimg leads to unrestricted upload. The attack can be launched remotely...
CVE-2024-6734
A vulnerability was found in itsourcecode Tailoring Management System 1.0. It has been classified as critical. This affects an unknown part of the file templateadd.php. The manipulation of the argument title/msg leads to sql injection. It is possible to initiate the attack remotely. The exploit h...
CVE-2024-6735
Summary: CVE-2024-6735 affects itsourcecode Tailoring Management System 1.0. The vulnerability resides in the file setgeneral.php, where manipulating the parameters sitename, email, mobile, sms, or currency can trigger SQL injection. Exploitation appears remote and has been publicized. Technical ...
CVE-2024-6734
CVE-2024-6734 : A SQL injection flaw exists in itsourcecode Tailoring Management System 1.0, originating in the templateadd.php file. The vulnerability is triggered by manipulating the title/msg parameters, enabling remote attackers to execute arbitrary SQL. Exploitation is feasible remotely and ...