CVE-2024-8171

CVE-2024-8171 affects the Tailoring Management System v1.0. The vulnerability resides in an insecure handling of the parameter title in the file staffcatedit.php , enabling SQL injection when the parameter is manipulated. This is described as a remotely initiable vulnerability with the exploit pu...

CVE-2024-8139

A vulnerability has been found in itsourcecode E-Commerce Website 1.0 and classified as critical. Affected by this vulnerability is an unknown functionality of the file searchlist.php. The manipulation of the argument user leads to sql injection. The attack can be launched remotely. The exploit h...

CVE-2024-8139

CVE-2024-8139 affects itsourcecode E-Commerce Website 1.0. The issue is a SQL injection in the search_list.php logic triggered by manipulating the user parameter, exploitable remotely. Multiple connected sources confirm the vulnerability and public exploit disclosure. Remediation: upgrade to vers...

itsourcecode E-Commerce Website SQL注入漏洞

itsourcecode E-Commerce Website is an e-commerce website of itsourcecode open source. A SQL injection vulnerability exists in itsourcecode E-Commerce Website version 1.0, which stems from improper handling of the parameter user and could lead to an SQL injection attack...

CVE-2024-42918

itsourcecode Online Accreditation Management System contains a Cross Site Scripting vulnerability, which allows an attacker to execute arbitrary code via a crafted payload to the SCHOOLNAME, EMAILADDRES, CONTACTNO, COMPANYNAME and COMPANYCONTACTNO parameters in controller.php...

PT-2024-30205 · Unknown · Itsourcecode Online Accreditation Management System

Name of the Vulnerable Software and Affected Versions: itsourcecode Online Accreditation Management System affected versions not specified Description: The itsourcecode Online Accreditation Management System contains a Cross Site Scripting issue, allowing an attacker to execute arbitrary code via...

CVE-2024-8081

A vulnerability classified as critical was found in itsourcecode Payroll Management System 1.0. Affected by this vulnerability is an unknown functionality of the file login.php. The manipulation of the argument username leads to sql injection. The attack can be launched remotely. The exploit has...

CVE-2024-8081

The CVE-2024-8081 issue affects itsourcecode Payroll Management System 1.0, where the login.php file’s username parameter is vulnerable to SQL injection. It is exploitable remotely, and public disclosures exist. The known remediation/mitigation from connected details includes temporary workaround...

PT-2024-38792 · Itsourcecode · Itsourcecode Payroll Management System

Name of the Vulnerable Software and Affected Versions: itsourcecode Payroll Management System version 1.0 Description: A critical vulnerability was found in the itsourcecode Payroll Management System. The issue affects an unknown functionality of the file login.php. The manipulation of the userna...

CVE-2024-7945

A vulnerability was found in itsourcecode Laravel Property Management System 1.0. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the file /admin/notes/create of the component Notes Page. The manipulation of the argument Note text leads to cross...

CVE-2024-7945

A vulnerability was found in itsourcecode Laravel Property Management System 1.0. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the file /admin/notes/create of the component Notes Page. The manipulation of the argument Note text leads to cross...

CVE-2024-7946

CVE-2024-7946 affects itsourcecode Online Blood Bank Management System 1.0. The vulnerability lies in the User Signup component, specifically the register.php file, where the argument user can be manipulated to cause SQL injection. This allows remote attacks and, per sources, the exploit has been...

CVE-2024-7945

CVE-2024-7945 affects itsourcecode Laravel Property Management System 1.0. The vulnerability is a cross-site scripting flaw in the Notes Page component, specifically the /admin/notes/create functionality, caused by unsafely handling the Note text argument. Attack is described as remote and public...

CVE-2024-7945 itsourcecode Laravel Property Management System Notes Page create cross site scripting

A vulnerability was found in itsourcecode Laravel Property Management System 1.0. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the file /admin/notes/create of the component Notes Page. The manipulation of the argument Note text leads to cross...

CVE-2024-7944

The CVE-2024-7944 entry concerns itsourcecode Laravel Property Management System 1.0. The vulnerability affects the UpdateDocumentsRequest in DocumentsController.php, enabling unrestricted file upload and allowing a remote attacker to exploit it. Public disclosure of the exploit is indicated, und...

CVE-2024-7943 itsourcecode Laravel Property Management System PropertiesController.php upload unrestricted upload

A vulnerability was found in itsourcecode Laravel Property Management System 1.0 and classified as critical. This issue affects the function upload of the file PropertiesController.php. The manipulation of the argument file leads to unrestricted upload. The attack may be initiated remotely. The...

CVE-2024-7936

A vulnerability classified as critical has been found in itsourcecode Project Expense Monitoring System 1.0. This affects an unknown part of the file transferredreport.php. The manipulation of the argument start/end/employee leads to sql injection. It is possible to initiate the attack remotely...

CVE-2024-7936

A vulnerability classified as critical has been found in itsourcecode Project Expense Monitoring System 1.0. This affects an unknown part of the file transferredreport.php. The manipulation of the argument start/end/employee leads to sql injection. It is possible to initiate the attack remotely...

CVE-2024-7937

CVE-2024-7937 affects the itsourcecode Project Expense Monitoring System 1.0. The vulnerability is in the file printtransfer.php , where manipulation of the transfer_id parameter leads to SQL injection. The attack is possible remotely and exploits have been disclosed publicly. Connected sources p...

itsourcecode Laravel Property Management System 代码问题漏洞

Laravel Property Management System is itsourcecode open source property management system. A code issue exists in version 1.0 of itsourcecode Laravel Property Management System due to an unrestricted file upload vulnerability in the UpdateDocumentsRequest component of the DocumentsController.php...