PT-2024-38617 · Unknown · Sourcecodester Online Food Ordering System

Name of the Vulnerable Software and Affected Versions: itsourcecode Online Food Ordering System version 1.0 Description: A critical issue affects some unknown functionality of the file /addcategory.php. The manipulation of the cname argument leads to SQL injection. The attack can be launched...

CVE-2024-7794

A vulnerability was found in itsourcecode Vehicle Management System 1.0. It has been rated as critical. Affected by this issue is some unknown functionality of the file mybill.php. The manipulation of the argument id leads to sql injection. The attack may be launched remotely. The exploit has bee...

CVE-2024-7794

CVE-2024-7794 affects itsourcecode Vehicle Management System version 1.0, with a vulnerability in the mybill.php file where manipulation of the id parameter leads to SQL injection. The issue is described as exploitable remotely and the exploit has been disclosed publicly. Several connected source...

CVE-2024-7680

CVE-2024-7680 affects itsourcecode Tailoring Management System 1.0. The vulnerability is a SQL injection in the PHP page /incedit.php, triggered by manipulating the arguments id/inccat/desc/date/amount on the /incedit.php?id=4 endpoint. The issue is exploitable remotely and exploitation public di...

CVE-2024-7506

A vulnerability has been found in itsourcecode Tailoring Management System 1.0 and classified as critical. Affected by this vulnerability is an unknown functionality of the file /setlogo.php. The manipulation of the argument bgimg leads to unrestricted upload. The attack can be launched remotely...

CVE-2024-7506 itsourcecode Tailoring Management System setlogo.php unrestricted upload

A vulnerability has been found in itsourcecode Tailoring Management System 1.0 and classified as critical. Affected by this vulnerability is an unknown functionality of the file /setlogo.php. The manipulation of the argument bgimg leads to unrestricted upload. The attack can be launched remotely...

CVE-2024-7506 itsourcecode Tailoring Management System setlogo.php unrestricted upload

A vulnerability has been found in itsourcecode Tailoring Management System 1.0 and classified as critical. Affected by this vulnerability is an unknown functionality of the file /setlogo.php. The manipulation of the argument bgimg leads to unrestricted upload. The attack can be launched remotely...

CVE-2024-7505

A vulnerability, which was classified as critical, was found in itsourcecode Bike Delivery System 1.0. Affected is an unknown function of the file contactusaction.php. The manipulation of the argument name leads to sql injection. It is possible to launch the attack remotely. The exploit has been...

CVE-2024-7500

A vulnerability was found in itsourcecode Airline Reservation System 1.0. It has been rated as critical. Affected by this issue is the function savesettings of the file admin/adminclass.php. The manipulation of the argument img leads to unrestricted upload. The attack may be launched remotely. Th...

CVE-2024-7505 itsourcecode Bike Delivery System contact_us_action.php sql injection

A vulnerability, which was classified as critical, was found in itsourcecode Bike Delivery System 1.0. Affected is an unknown function of the file contactusaction.php. The manipulation of the argument name leads to sql injection. It is possible to launch the attack remotely. The exploit has been...

CVE-2024-7505

Affected software: Bike Delivery System 1.0. The vulnerability exists in an unknown function of the file contact_us_action.php where manipulating the name parameter leads to SQL injection. It is a remotely exploitable issue with public disclosure. Several connected sources corroborate the SQL inj...

CVE-2024-7500

CVE-2024-7500 affects itsourcecode Airline Reservation System 1.0. The vulnerable component is the save_settings function in admin/admin_class.php, where manipulation of the img argument enables unrestricted file uploads. The issue is exploitable remotely, and public disclosures exist (VDB-273626...

CVE-2024-7500 itsourcecode Airline Reservation System admin_class.php save_settings unrestricted upload

A vulnerability was found in itsourcecode Airline Reservation System 1.0. It has been rated as critical. Affected by this issue is the function savesettings of the file admin/adminclass.php. The manipulation of the argument img leads to unrestricted upload. The attack may be launched remotely. Th...

CVE-2024-7498

A vulnerability was found in itsourcecode Airline Reservation System 1.0. It has been classified as critical. Affected is the function login/login2 of the file /admin/login.php of the component Admin Login Page. The manipulation of the argument username leads to sql injection. It is possible to...

CVE-2024-7498

A vulnerability was found in itsourcecode Airline Reservation System 1.0. It has been classified as critical. Affected is the function login/login2 of the file /admin/login.php of the component Admin Login Page. The manipulation of the argument username leads to sql injection. It is possible to...

CVE-2024-7498 itsourcecode Airline Reservation System Admin Login Page login.php login2 sql injection

A vulnerability was found in itsourcecode Airline Reservation System 1.0. It has been classified as critical. Affected is the function login/login2 of the file /admin/login.php of the component Admin Login Page. The manipulation of the argument username leads to sql injection. It is possible to...

CVE-2024-7497

A vulnerability was found in itsourcecode Airline Reservation System 1.0 and classified as critical. This issue affects some unknown processing of the file /admin/index.php. The manipulation of the argument page leads to file inclusion. The attack may be initiated remotely. The exploit has been...

CVE-2024-7497 itsourcecode Airline Reservation System index.php file inclusion

A vulnerability was found in itsourcecode Airline Reservation System 1.0 and classified as critical. This issue affects some unknown processing of the file /admin/index.php. The manipulation of the argument page leads to file inclusion. The attack may be initiated remotely. The exploit has been...

CVE-2024-7496 itsourcecode Airline Reservation System index.php file inclusion

A vulnerability has been found in itsourcecode Airline Reservation System 1.0 and classified as critical. This vulnerability affects unknown code of the file /index.php. The manipulation of the argument page leads to file inclusion. The attack can be initiated remotely. The exploit has been...

itsourcecode Laravel Accounting System 代码问题漏洞

itsourcecode Laravel Accounting System is an accounting system from itsourcecode, Inc. A code issue vulnerability exists in version 1.0 of itsourcecode Laravel Accounting System, which stems from an incorrect manipulation of the parameter image that can lead to unrestricted file uploads...