1444 matches found
CVE-2024-42765
A SQL injection vulnerability in "/login.php" of the Kashipara Bus Ticket Reservation System v1.0 allows remote attackers to execute arbitrary SQL commands and bypass Login via the "email" or "password" Login page parameters...
CVE-2024-8081
A vulnerability classified as critical was found in itsourcecode Payroll Management System 1.0. Affected by this vulnerability is an unknown functionality of the file login.php. The manipulation of the argument username leads to sql injection. The attack can be launched remotely. The exploit has...
CVE-2024-8081
A vulnerability classified as critical was found in itsourcecode Payroll Management System 1.0. Affected by this vulnerability is an unknown functionality of the file login.php. The manipulation of the argument username leads to sql injection. The attack can be launched remotely. The exploit has...
CVE-2024-8081 itsourcecode Payroll Management System login.php sql injection
A vulnerability classified as critical was found in itsourcecode Payroll Management System 1.0. Affected by this vulnerability is an unknown functionality of the file login.php. The manipulation of the argument username leads to sql injection. The attack can be launched remotely. The exploit has...
CVE-2024-8081
The CVE-2024-8081 issue affects itsourcecode Payroll Management System 1.0, where the login.php file’s username parameter is vulnerable to SQL injection. It is exploitable remotely, and public disclosures exist. The known remediation/mitigation from connected details includes temporary workaround...
CVE-2024-42566
School Management System commit bae5aa was discovered to contain a SQL injection vulnerability via the password parameter at login.php...
CVE-2024-7947 SourceCodester Point of Sales and Inventory Management System login.php sql injection
A vulnerability classified as critical has been found in SourceCodester Point of Sales and Inventory Management System 1.0. This affects an unknown part of the file login.php. The manipulation of the argument email leads to sql injection. It is possible to initiate the attack remotely. The exploi...
CVE-2024-7947 SourceCodester Point of Sales and Inventory Management System login.php sql injection
A vulnerability classified as critical has been found in SourceCodester Point of Sales and Inventory Management System 1.0. This affects an unknown part of the file login.php. The manipulation of the argument email leads to sql injection. It is possible to initiate the attack remotely. The exploi...
CVE-2024-42566
CVE-2024-42566 affects the School Management System. A SQL injection flaw is present in the login.php endpoint, exploitable via the password parameter. Public sources note the vulnerability but do not provide confirmed affected versions or a fix. Impact is described as high/critical in CVE metada...
PT-2024-30018 · Unknown · Hotel Management System
Name of the Vulnerable Software and Affected Versions: Hotel Management System version 79d688 Description: An issue in the login component, specifically in the process login.php file, allows attackers to authenticate without providing a valid password. This enables unauthorized access to the...
CVE-2024-42566
School Management System commit bae5aa was discovered to contain a SQL injection vulnerability via the password parameter at login.php...
CVE-2024-7681 code-projects College Management System Login Page login.php sql injection
A vulnerability was found in code-projects College Management System 1.0. It has been declared as critical. This vulnerability affects unknown code of the file login.php of the component Login Page. The manipulation of the argument email/password leads to sql injection. The attack can be initiate...
CVE-2024-7449
CVE-2024-7449 affects itsourcecode Placement Management System 1.0. The login.php file contains an SQL injection in the email parameter, enabling remote exploitation. Descriptions indicate exploitation is publicly disclosed and potentially usable. Impact is described as critical with possible dat...
PT-2024-38354 · Unknown · Itsourcecode Ticket Reservation System
Name of the Vulnerable Software and Affected Versions: itsourcecode Ticket Reservation System version 1.0 Description: A critical issue was found in the itsourcecode Ticket Reservation System, affecting an unknown functionality of the file login.php of the component Login Page. The manipulation o...
CVE-2024-6966
A vulnerability was found in itsourcecode Online Blood Bank Management System 1.0 and classified as critical. Affected by this issue is some unknown functionality of the file login.php of the component Login. The manipulation of the argument user/pass leads to sql injection. The attack may be...
CVE-2024-6966
CVE-2024-6966 affects itsourcecode Online Blood Bank Management System 1.0, specifically the Login component (login.php). The vulnerability is a SQL injection triggered by manipulating the user/pass argument, with remote access possible and public disclosure of exploits. Multiple sources corrobor...
CVE-2019-16641
An issue was found on the Ruijie EG-2000 series gateway. There is a buffer overflow in client.so. Consequently, an attacker can use login.php to login to any account, without providing its password. This affects EG-2000SE EGRGOS 11.11B1...
CVE-2019-16641
An issue was found on the Ruijie EG-2000 series gateway. There is a buffer overflow in client.so. Consequently, an attacker can use login.php to login to any account, without providing its password. This affects EG-2000SE EGRGOS 11.11B1...
CVE-2019-16641
An issue was found on the Ruijie EG-2000 series gateway. There is a buffer overflow in client.so. Consequently, an attacker can use login.php to login to any account, without providing its password. This affects EG-2000SE EGRGOS 11.11B1...
CVE-2019-16641
The CVE-2019-16641 issue affects Ruijie EG-2000 series gateways (notably EG-2000SE and EG_RGOS 11.1(1)B1). A buffer overflow in the client.so component enables a login.bypass via login.php, letting an attacker access any account without a password. Connected sources confirm the affected products ...