PT-2024-15291 · Yugabyte · Yugabyte Platform

Name of the Vulnerable Software and Affected Versions: Yugabyte Platform affected versions not specified Description: The issue concerns information exposure in the logging system, allowing local attackers with access to application logs to obtain database user credentials in log files. This coul...

CVE-2024-6736

A vulnerability was found in SourceCodester Employee and Visitor Gate Pass Logging System 1.0. It has been rated as critical. This issue affects some unknown processing of the file viewemployee.php. The manipulation of the argument id leads to sql injection. The attack may be initiated remotely...

CVE-2024-6736 SourceCodester Employee and Visitor Gate Pass Logging System view_employee.php sql injection

A vulnerability was found in SourceCodester Employee and Visitor Gate Pass Logging System 1.0. It has been rated as critical. This issue affects some unknown processing of the file viewemployee.php. The manipulation of the argument id leads to sql injection. The attack may be initiated remotely...

CVE-2024-6736 SourceCodester Employee and Visitor Gate Pass Logging System view_employee.php sql injection

A vulnerability was found in SourceCodester Employee and Visitor Gate Pass Logging System 1.0. It has been rated as critical. This issue affects some unknown processing of the file viewemployee.php. The manipulation of the argument id leads to sql injection. The attack may be initiated remotely...

CVE-2024-6736

The CVE-2024-6736 entry concerns SourceCodester Employee and Visitor Gate Pass Logging System v1.0. The vulnerability is a SQL injection in the view_employee.php component, triggered by manipulating the id parameter. The issue is exploitable remotely and has been publicly disclosed. Several conne...

CVE-2024-6650

A vulnerability was found in SourceCodester Employee and Visitor Gate Pass Logging System 1.0 and classified as problematic. Affected by this issue is the function savedesignation of the file /classes/Master.php. The manipulation leads to cross site scripting. The attack may be launched remotely...

CVE-2024-6650 SourceCodester Employee and Visitor Gate Pass Logging System Master.php save_designation cross site scripting

A vulnerability was found in SourceCodester Employee and Visitor Gate Pass Logging System 1.0 and classified as problematic. Affected by this issue is the function savedesignation of the file /classes/Master.php. The manipulation leads to cross site scripting. The attack may be launched remotely...

CVE-2024-6650

Summary: CVE-2024-6650 affects the SourceCodester Employee and Visitor Gate Pass Logging System 1.0. Multiple connected records confirm that the vulnerability arises in the function save_designation within /classes/Master.php , enabling a cross-site scripting (XSS) condition. The attack is descri...

CVE-2024-6649 SourceCodester Employee and Visitor Gate Pass Logging System Users.php save_users cross-site request forgery

A vulnerability has been found in SourceCodester Employee and Visitor Gate Pass Logging System 1.0 and classified as problematic. Affected by this vulnerability is the function saveusers of the file Users.php. The manipulation leads to cross-site request forgery. The attack can be launched...

CVE-2024-6649 SourceCodester Employee and Visitor Gate Pass Logging System Users.php save_users cross-site request forgery

A vulnerability has been found in SourceCodester Employee and Visitor Gate Pass Logging System 1.0 and classified as problematic. Affected by this vulnerability is the function saveusers of the file Users.php. The manipulation leads to cross-site request forgery. The attack can be launched...

CVE-2024-6649

CVE-2024-6649 affects SourceCodester Employee and Visitor Gate Pass Logging System 1.0, specifically the save_users function in Users.php, where manipulation enables cross-site request forgery. The vulnerability can be exploited remotely and has public tooling/descriptions. Exploitation details a...

CVE-2024-5976 SourceCodester Employee and Visitor Gate Pass Logging System log_employee sql injection

A vulnerability was found in SourceCodester Employee and Visitor Gate Pass Logging System 1.0. It has been classified as critical. Affected is the function logemployee of the file /classes/Master.php?f=logemployee. The manipulation of the argument employeecode leads to sql injection. It is possib...

CVE-2024-5976

SourceCodester Employee and Visitor Gate Pass Logging System 1.0 is affected by CVE-2024-5976 in the function log_employee (file /classes/Master.php?f=log_employee). The vulnerability arises from SQL injection caused by manipulating the employee_code argument, and the issue can be exploited remot...

CVE-2024-5896

A vulnerability, which was classified as critical, was found in SourceCodester Employee and Visitor Gate Pass Logging System 1.0. Affected is the function saveusers of the file /classes/Users.php?f=save. The manipulation of the argument id leads to sql injection. It is possible to launch the atta...

CVE-2024-5897 SourceCodester Employee and Visitor Gate Pass Logging System cross site scripting

A vulnerability has been found in SourceCodester Employee and Visitor Gate Pass Logging System 1.0 and classified as problematic. Affected by this vulnerability is an unknown functionality of the file /classes/Master.php?f=logvisitor. The manipulation of the argument name leads to cross site...

CVE-2024-5897

SourceCodester Employee and Visitor Gate Pass Logging System 1.0 is affected by a cross-site scripting (XSS) vulnerability in /classes/Master.php?f=log_visitor (or log visitor). The vulnerability arises from manipulation of the name parameter, enabling remote exploitation and is publicly disclose...

CVE-2024-5896 SourceCodester Employee and Visitor Gate Pass Logging System save_users sql injection

A vulnerability, which was classified as critical, was found in SourceCodester Employee and Visitor Gate Pass Logging System 1.0. Affected is the function saveusers of the file /classes/Users.php?f=save. The manipulation of the argument id leads to sql injection. It is possible to launch the atta...

CVE-2024-5895 SourceCodester Employee and Visitor Gate Pass Logging System delete_users sql injection

A vulnerability, which was classified as critical, has been found in SourceCodester Employee and Visitor Gate Pass Logging System 1.0. This issue affects the function deleteusers of the file /classes/Users.php?f=delete. The manipulation of the argument id leads to sql injection. The attack may be...

CVE-2024-5895 SourceCodester Employee and Visitor Gate Pass Logging System delete_users sql injection

A vulnerability, which was classified as critical, has been found in SourceCodester Employee and Visitor Gate Pass Logging System 1.0. This issue affects the function deleteusers of the file /classes/Users.php?f=delete. The manipulation of the argument id leads to sql injection. The attack may be...

Employee and Visitor Gate Pass Logging System SQL Injection Vulnerability

Employee and Visitor Gate Pass Logging System is an employee and visitor pass logging system developed by Carlo Montero. An SQL injection vulnerability exists in Employee and Visitor Gate Pass Logging System version 1.0 due to an unknown part of the deleteusers function in /classes/Users.php, whi...