Courier Management System /login.php File SQL Injection Vulnerability

Courier Management System is a courier management system. Courier Management System suffers from a SQL injection vulnerability that originates from improper handling of the txtusername parameter in the /login.php file. An attacker could exploit this vulnerability to disclose sensitive information...

Web-Based Student Clearance System SQL注入漏洞

Web-Based Student Clearance System is a web-based student clearance system. A SQL injection vulnerability exists in Web-Based Student Clearance System version 1.0, which originates from the lack of validation of externally entered SQL statements in the parameter Student in /libsystem/login.php. A...

CVE-2021-30083

An issue was discovered in Mediat 1.4.1. There is a Reflected XSS vulnerability which allows remote attackers to inject arbitrary web script or HTML without authentication via the 'return' parameter in login.php...

SourceCodester Online Clothing Store SQL Injection Vulnerability

SourceCodester Online Clothing Store is a website builder system from SourceCodester, Inc. that provides online clothing store functionality. A SQL injection vulnerability exists in SourceCodester version 1.0. The vulnerability stems from the program failing to properly validate user input, which...