Client management SQL injection vulnerability

Simple Client Management System is a simple web-based application that provides an online platform to manage company customer invoices.Simple Client Management System 1.0 is vulnerable to a SQL injection vulnerability that could be caused by a password parameter in Login.php. No detailed...

CVE-2021-43506

An SQL Injection vulnerability exists in Sourcecodester Simple Client Management System 1.0 via the password parameter in Login.php...

Sql injection

An SQL Injection vulnerability exists in Sourcecodester Simple Client Management System 1.0 via the password parameter in Login.php...

CVE-2021-43506

The vulnerability CVE-2021-43506 affects Sourcecodester Simple Client Management System 1.0, where an SQL Injection can be triggered via the password parameter in Login.php. The root cause is improper input handling leading to unauthorized access or data exposure. Multiple sources (NVD and Red Ha...

Patient Appointment Scheduler System SQL Injection Vulnerability

Patient Appointment Scheduler System is a patient appointment scheduling system project. It provides an online platform for clinic patients or potential patients to schedule appointments with physicians. patient Appointment Scheduler System version 1.0 contains a SQL injection vulnerability that...

CVE-2022-25013

Ice Hrm 30.0.0.OS was discovered to contain multiple reflected cross-site scripting XSS vulnerabilities via the "key" and "fm" parameters in the component login.php...

CVE-2022-25013

Ice Hrm 30.0.0.OS was discovered to contain multiple reflected cross-site scripting XSS vulnerabilities via the "key" and "fm" parameters in the component login.php...

Cross site scripting

Ice Hrm 30.0.0.OS was discovered to contain multiple reflected cross-site scripting XSS vulnerabilities via the "key" and "fm" parameters in the component login.php...

CVE-2022-25013

Ice Hrm 30.0.0.OS is vulnerable to multiple reflected XSS in login.php via the key and fm parameters. The CNVD entry cites lack of checksum filtering of user-supplied data and output data in these parameters as the root cause; other sources describe the issue as reflected XSS without detailing a ...

CVE-2022-25013

Ice Hrm 30.0.0.OS was discovered to contain multiple reflected cross-site scripting XSS vulnerabilities via the "key" and "fm" parameters in the component login.php...

CVE-2022-24223

AtomCMS v2.0 was discovered to contain a SQL injection vulnerability via /admin/login.php...

Sql injection

AtomCMS v2.0 was discovered to contain a SQL injection vulnerability via /admin/login.php...

CVE-2022-24223

AtomCMS v2.0 was discovered to contain a SQL injection vulnerability via /admin/login.php...

CVE-2020-25905

An SQL Injection vulnerabilty exists in Sourcecodester Mobile Shop System in PHP MySQL 1.0 via the email parameter in 1 login.php or 2 LoginAsAdmin.php...

CVE-2020-25905

An SQL Injection vulnerabilty exists in Sourcecodester Mobile Shop System in PHP MySQL 1.0 via the email parameter in 1 login.php or 2 LoginAsAdmin.php...

SourceCodester Storage Unit Rental Management System SQL Injection Vulnerability

SourceCodester Storage Unit Rental Management System is a storage unit rental management system that helps manage storage unit rental business records and monitor their records. sourceCodester Storage Unit Rental Management A SQL injection vulnerability exists in the v1 version of the System. The...

Online Payment Hub SQL注入漏洞

Online Payment Hub is an online payment hub for Carlo Montero personal developers. The Online Payment Hub is vulnerable to SQL injection due to a lack of filtering and escaping of SQL data in Login.php, which could be exploited to execute arbitrary SQL commands via the username parameter...

Sql injection

SQL injection vulnerability in Login.php in Sourcecodester Online Payment Hub v1 by oretnom23, allows attackers to execute arbitrary SQL commands via the username parameter...

CVE-2021-43420

CVE-2021-43420 affects Sourcecodester Online Payment Hub v1 (Login.php) by oretnom23. A SQL injection is possible via the username parameter, caused by insufficient input handling (no filtering/escaping of SQL data). Reported as a high/critical issue in CVSS metrics (NVD): CVSS 2.0 base score 7.5...

CVE-2021-43420

SQL injection vulnerability in Login.php in Sourcecodester Online Payment Hub v1 by oretnom23, allows attackers to execute arbitrary SQL commands via the username parameter...