Online Shop Store 安全漏洞

Online Shop Store is an online store system from Online Shop Store, Inc. A security vulnerability exists in Online Shop Store v1.0, which stems from a cross-site scripting vulnerability that allows remote attackers to execute arbitrary code via the login.php component...

CVE-2024-10733 code-projects Restaurant Order System login.php sql injection

A vulnerability was found in code-projects Restaurant Order System 1.0 and classified as critical. Affected by this issue is some unknown functionality of the file /login.php. The manipulation of the argument uid leads to sql injection. The attack may be launched remotely. The exploit has been...

CVE-2024-10733 code-projects Restaurant Order System login.php sql injection

A vulnerability was found in code-projects Restaurant Order System 1.0 and classified as critical. Affected by this issue is some unknown functionality of the file /login.php. The manipulation of the argument uid leads to sql injection. The attack may be launched remotely. The exploit has been...

CVE-2024-48410

Cross Site Scripting vulnerability in Camtrace v.9.16.2.1 allows a remote attacker to execute arbitrary code via the login.php...

CVE-2024-48410

Cross Site Scripting vulnerability in Camtrace v.9.16.2.1 allows a remote attacker to execute arbitrary code via the login.php...

CVE-2024-48410

CVE-2024-48410 affects Camtrace v9.16.2.1. The Red Hat, CIRCL, NVD and related records describe a Cross Site Scripting vulnerability in login.php that allows a remote attacker to execute arbitrary code. The core detail across sources is the vulnerability is tied to Camtrace 9.16.2.1 and is classi...

CVE-2024-10509 Codezips Online Institute Management System login.php sql injection

A vulnerability, which was classified as critical, has been found in Codezips Online Institute Management System 1.0. This issue affects some unknown processing of the file /login.php. The manipulation of the argument email leads to sql injection. The attack may be initiated remotely. The exploit...

CVE-2024-10509 Codezips Online Institute Management System login.php sql injection

A vulnerability, which was classified as critical, has been found in Codezips Online Institute Management System 1.0. This issue affects some unknown processing of the file /login.php. The manipulation of the argument email leads to sql injection. The attack may be initiated remotely. The exploit...

CVE-2024-10507 Codezips Free Exam Hall Seating Management System login.php sql injection

A vulnerability classified as critical was found in Codezips Free Exam Hall Seating Management System 1.0. This vulnerability affects unknown code of the file /login.php. The manipulation of the argument email leads to sql injection. The attack can be initiated remotely. The exploit has been...

CVE-2024-48654

CVE-2024-48654: A Cross Site Scripting vulnerability in Blood Bank v.1 allows a remote attacker to execute arbitrary code via a crafted script to login.php. According to the CVE record, the issue is exploitable over the network with user interaction required and has a base score of 6.1 (Medium). ...

CVE-2024-10335

CVE-2024-10335 affects SourceCodester Garbage Collection Management System 1.0. The vulnerability resides in the login.php code, where manipulation of the username and potentially password parameters leads to an SQL injection. Exploitation is described as remote, with public disclosure of the exp...

CVE-2024-10335 SourceCodester Garbage Collection Management System login.php sql injection

A vulnerability was found in SourceCodester Garbage Collection Management System 1.0. It has been declared as critical. This vulnerability affects unknown code of the file login.php. The manipulation of the argument username/password leads to sql injection. The attack can be initiated remotely. T...

CVE-2024-10335 SourceCodester Garbage Collection Management System login.php sql injection

A vulnerability was found in SourceCodester Garbage Collection Management System 1.0. It has been declared as critical. This vulnerability affects unknown code of the file login.php. The manipulation of the argument username/password leads to sql injection. The attack can be initiated remotely. T...

CVE-2024-9034

A vulnerability was found in code-projects Patient Record Management System 1.0 and classified as critical. Affected by this issue is some unknown functionality of the file login.php. The manipulation of the argument username leads to sql injection. The attack may be launched remotely. The exploi...

Oracle Secure Backup Authentication Bypass / Command Injection

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Oracle Secure Backup Authentication Bypass/Command Injection Vulnerability', 'Description' = %q This module exploits an authentication bypass...

CVE-2024-8174

CVE-2024-8174 affects code-projects Blood Bank System 1.0, specifically the Login Page functionality. The vulnerability lies in the login.php page where manipulating the user parameter leads to cross-site scripting. The issue is exploitable remotely, and public disclosure exists. Multiple connect...

CVE-2024-8168

A vulnerability was found in code-projects Online Bus Reservation Site 1.0. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file login.php. The manipulation of the argument Username leads to sql injection. The attack can be launched remotely. Th...

CVE-2024-8168 code-projects Online Bus Reservation Site login.php sql injection

A vulnerability was found in code-projects Online Bus Reservation Site 1.0. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file login.php. The manipulation of the argument Username leads to sql injection. The attack can be launched remotely. Th...

CVE-2024-8168 code-projects Online Bus Reservation Site login.php sql injection

A vulnerability was found in code-projects Online Bus Reservation Site 1.0. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file login.php. The manipulation of the argument Username leads to sql injection. The attack can be launched remotely. Th...

Code-Projects Blood Bank System 跨站脚本漏洞

Code-Projects Blood Bank System is a Code-Projects open source blood bank management system. A cross-site scripting vulnerability exists in Code-Projects Blood Bank System version 1.0, which is caused by a cross-site scripting vulnerability in the user parameter of the /login.php page...