CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

CNNVD•added 2024/08/06 12:0 a.m.•3 views

itsourcecode Airline Reservation System SQL注入漏洞

itsourcecode Airline Reservation System is an airline reservation system from itsourcecode, Inc. A SQL injection vulnerability exists in version 1.0 of itsourcecode Airline Reservation System, which stems from an incorrect operation of the parameter departureairportid that can lead to sql injecti...

9.8CVSS7.3AI score0.00551EPSS

CNNVD•added 2024/08/06 12:0 a.m.•2 views

itsourcecode Airline Reservation System 代码问题漏洞

itsourcecode Airline Reservation System is an airline reservation system from itsourcecode, Inc. A code issue vulnerability exists in version 1.0 of itsourcecode Airline Reservation System, which stems from an incorrect manipulation of the parameter img that can lead to unlimited file uploads...

9.8CVSS6.6AI score0.00674EPSS

CNNVD•added 2024/08/06 12:0 a.m.•3 views

itsourcecode Airline Reservation System SQL注入漏洞

itsourcecode Airline Reservation System is an airline reservation system from itsourcecode, Inc. A SQL injection vulnerability exists in version 1.0 of itsourcecode Airline Reservation System, which stems from an incorrect manipulation of the parameter username that can lead to sql injection...

9.8CVSS8AI score0.00655EPSS

NVD•added 2024/08/04 12:16 p.m.•21 views

CVE-2024-7455

A vulnerability, which was classified as critical, was found in itsourcecode Tailoring Management System 1.0. This affects an unknown part of the file partedit.php. The manipulation of the argument id leads to sql injection. It is possible to initiate the attack remotely. The exploit has been...

9.8CVSS0.00514EPSS

Vulnrichment•added 2024/08/04 11:31 a.m.•10 views

CVE-2024-7455 itsourcecode Tailoring Management System partedit.php sql injection

6.5CVSS7.3AI score0.00514EPSS

Cvelist•added 2024/08/04 11:31 a.m.•30 views

CVE-2024-7455 itsourcecode Tailoring Management System partedit.php sql injection

6.5CVSS0.00514EPSS

CVE•added 2024/08/04 11:31 a.m.•24 views

CVE-2024-7455

The CVE-2024-7455 entry concerns Tailoring Management System v1.0, with a vulnerability in partedit.php where modifying the id parameter enables SQL injection. This affects an unknown part of the file and is exploitable remotely; multiple sources state the exploit has been disclosed. Root cause i...

9.8CVSS6.8AI score0.00514EPSS

NVD•added 2024/08/04 4:17 a.m.•11 views

CVE-2024-7452

A vulnerability was found in itsourcecode Placement Management System 1.0. It has been classified as critical. This affects an unknown part of the file viewcompany.php. The manipulation of the argument id leads to sql injection. It is possible to initiate the attack remotely. The exploit has been...

9.8CVSS0.00578EPSS

NVD•added 2024/08/04 4:17 a.m.•26 views

CVE-2024-7451

A vulnerability was found in itsourcecode Placement Management System 1.0 and classified as critical. Affected by this issue is some unknown functionality of the file applynow.php. The manipulation of the argument id leads to sql injection. The attack may be launched remotely. The exploit has bee...

9.8CVSS0.00578EPSS

CVE•added 2024/08/04 3:31 a.m.•24 views

CVE-2024-7451

CVE-2024-7451 affects the itsourcecode Placement Management System 1.0. The vulnerability is in the file apply_now.php, where manipulation of the id parameter leads to a SQL injection . Exploitation is possible remotely (network). Multiple connected sources classify this as critical/high impact w...

9.8CVSS6.8AI score0.00578EPSS

OSV•added 2024/08/04 3:15 a.m.•4 views

CVE-2024-7449

A vulnerability, which was classified as critical, was found in itsourcecode Placement Management System 1.0. Affected is an unknown function of the file login.php. The manipulation of the argument email leads to sql injection. It is possible to launch the attack remotely. The exploit has been...

9.8CVSS5.7AI score0.00682EPSS

NVD•added 2024/08/04 3:15 a.m.•18 views

CVE-2024-7450

A vulnerability has been found in itsourcecode Placement Management System 1.0 and classified as critical. Affected by this vulnerability is an unknown functionality of the file /resumeupload.php of the component Image Handler. The manipulation of the argument fileToUpload leads to unrestricted...

8.8CVSS0.00625EPSS

CVE•added 2024/08/04 3:0 a.m.•32 views

CVE-2024-7450

CVE-2024-7450 affects itsourcecode Placement Management System 1.0, specifically the Image Handler’s /resume_upload.php. The vulnerability enables unrestricted upload by manipulating the fileToUpload parameter, with a remote attack vector and public exploit disclosure. Affected components are the...

8.8CVSS6.5AI score0.00625EPSS

Cvelist•added 2024/08/04 3:0 a.m.•21 views

CVE-2024-7450 itsourcecode Placement Management System Image resume_upload.php unrestricted upload

6.3CVSS0.00625EPSS

CVE•added 2024/08/04 2:31 a.m.•33 views

CVE-2024-7449

CVE-2024-7449 affects itsourcecode Placement Management System 1.0. The login.php file contains an SQL injection in the email parameter, enabling remote exploitation. Descriptions indicate exploitation is publicly disclosed and potentially usable. Impact is described as critical with possible dat...

9.8CVSS7.5AI score0.00682EPSS