CVE-2024-7190 itsourcecode Society Management System get_price.php sql injection

A vulnerability classified as critical was found in itsourcecode Society Management System 1.0. Affected by this vulnerability is an unknown functionality of the file /admin/getprice.php. The manipulation of the argument expensesid leads to sql injection. The attack can be launched remotely. The...

CVE-2024-7190

The CVE-2024-7190 entry affects itsourcecode Society Management System 1.0, specifically the /admin/get_price.php endpoint where manipulating the expenses_id parameter enables SQL injection. The vulnerability is described as remote-exploitable with a publicly disclosed exploit; assessed severitie...

CVE-2024-7189

CVE-2024-7189 affects itsourcecode Online Food Ordering System 1.0. The vulnerability resides in an unknown function of the file editproduct.php, where manipulation of the photo parameter enables unrestricted file upload. Reported as exploitable remotely, with public disclosure of the exploit. Co...

PT-2024-38157 · Unknown · Itsourcecode Society Management System

Name of the Vulnerable Software and Affected Versions: itsourcecode Society Management System version 1.0 Description: A critical issue has been found in the itsourcecode Society Management System. The problem is related to an unknown function in the file /admin/check admin.php, where the...

CVE-2024-7081

A vulnerability was found in itsourcecode Tailoring Management System 1.0. It has been rated as critical. Affected by this issue is some unknown functionality of the file expcatadd.php. The manipulation of the argument id/title leads to sql injection. The attack may be launched remotely. The...

CVE-2024-7081 itsourcecode Tailoring Management System expcatadd.php sql injection

A vulnerability was found in itsourcecode Tailoring Management System 1.0. It has been rated as critical. Affected by this issue is some unknown functionality of the file expcatadd.php. The manipulation of the argument id/title leads to sql injection. The attack may be launched remotely. The...

CVE-2024-7081 itsourcecode Tailoring Management System expcatadd.php sql injection

A vulnerability was found in itsourcecode Tailoring Management System 1.0. It has been rated as critical. Affected by this issue is some unknown functionality of the file expcatadd.php. The manipulation of the argument id/title leads to sql injection. The attack may be launched remotely. The...

PT-2024-38067 · Unknown · Itsourcecode Tailoring Management System

Name of the Vulnerable Software and Affected Versions: itsourcecode Tailoring Management System version 1.0 Description: A critical issue affects some unknown functionality of the file expcatadd.php. The manipulation of the id or title argument leads to SQL injection. The attack can be launched...

CVE-2024-6970

A vulnerability classified as critical has been found in itsourcecode Tailoring Management System 1.0. Affected is an unknown function of the file /staffcatadd.php. The manipulation of the argument title leads to sql injection. It is possible to launch the attack remotely. The exploit has been...

CVE-2024-6970 itsourcecode Tailoring Management System staffcatadd.php sql injection

A vulnerability classified as critical has been found in itsourcecode Tailoring Management System 1.0. Affected is an unknown function of the file /staffcatadd.php. The manipulation of the argument title leads to sql injection. It is possible to launch the attack remotely. The exploit has been...

CVE-2024-6970

CVE-2024-6970 affects itsourcecode Tailoring Management System 1.0. The vulnerability is in an unknown function of the file /staffcatadd.php, where manipulation of the title argument enables SQL injection. Exploitation is reported as remote and publicly disclosed. Connected sources (e.g., PT-2024...

CVE-2024-6966

A vulnerability was found in itsourcecode Online Blood Bank Management System 1.0 and classified as critical. Affected by this issue is some unknown functionality of the file login.php of the component Login. The manipulation of the argument user/pass leads to sql injection. The attack may be...

CVE-2024-6966

A vulnerability was found in itsourcecode Online Blood Bank Management System 1.0 and classified as critical. Affected by this issue is some unknown functionality of the file login.php of the component Login. The manipulation of the argument user/pass leads to sql injection. The attack may be...

CVE-2024-6966

CVE-2024-6966 affects itsourcecode Online Blood Bank Management System 1.0, specifically the Login component (login.php). The vulnerability is a SQL injection triggered by manipulating the user/pass argument, with remote access possible and public disclosure of exploits. Multiple sources corrobor...

CVE-2024-6957

A vulnerability classified as critical has been found in itsourcecode University Management System 1.0. This affects an unknown part of the file functions.php of the component Login. The manipulation of the argument username leads to sql injection. It is possible to initiate the attack remotely...

CVE-2024-6957

A vulnerability classified as critical has been found in itsourcecode University Management System 1.0. This affects an unknown part of the file functions.php of the component Login. The manipulation of the argument username leads to sql injection. It is possible to initiate the attack remotely...

CVE-2024-6958

A vulnerability classified as critical was found in itsourcecode University Management System 1.0. This vulnerability affects unknown code of the file /stupdate.php of the component Avatar File Handler. The manipulation of the argument personalimage leads to unrestricted upload. The attack can be...

CVE-2024-6958 itsourcecode University Management System Avatar File st_update.php unrestricted upload

A vulnerability classified as critical was found in itsourcecode University Management System 1.0. This vulnerability affects unknown code of the file /stupdate.php of the component Avatar File Handler. The manipulation of the argument personalimage leads to unrestricted upload. The attack can be...

CVE-2024-6958 itsourcecode University Management System Avatar File st_update.php unrestricted upload

A vulnerability classified as critical was found in itsourcecode University Management System 1.0. This vulnerability affects unknown code of the file /stupdate.php of the component Avatar File Handler. The manipulation of the argument personalimage leads to unrestricted upload. The attack can be...

CVE-2024-6957 itsourcecode University Management System Login functions.php sql injection

A vulnerability classified as critical has been found in itsourcecode University Management System 1.0. This affects an unknown part of the file functions.php of the component Login. The manipulation of the argument username leads to sql injection. It is possible to initiate the attack remotely...