Lucene search
+L

72 matches found

Packet Storm
Packet Storm
added 2024/09/17 12:0 a.m.207 views

Expense Management System 1.0 Arbitrary File Upload

============================================================================================================================================= | Title : Expense Management System v1.0 Remote File Upload Vulnerability | | Author : indoushka | | Tested on : windows 10 FrPro / browser : Mozilla firef...

7.4AI score
Exploits0
NVD
NVD
added 2024/08/12 1:38 p.m.33 views

CVE-2024-41332

Incorrect access control in the deletecategory function of Sourcecodester Computer Laboratory Management System v1.0 allows authenticated attackers with low-level privileges to arbitrarily delete categories...

6.5CVSS0.00599EPSS
Exploits3References2
Vulnrichment
Vulnrichment
added 2024/08/08 12:0 a.m.12 views

CVE-2024-40474

A Reflected Cross Site Scripting XSS vulnerability was found in "edit-cate.php" in SourceCodester House Rental Management System v1.0...

5.9AI score0.0052EPSS
Exploits0References2
GithubExploit
GithubExploit
added 2024/08/02 8:17 p.m.274 views

Exploit for Command Injection in Nikhil-Bhalerao Poultry_Farm_Management_System

PoC exploit for CVE-2024-40110, an arbitrary file upload vulnera...

9.8CVSS7.3AI score0.01909EPSS
Exploits3
Prion
Prion
added 2024/02/14 3:15 p.m.14 views

Sql injection

Employee Managment System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /edit.php...

5.8CVSS8.6AI score0.00716EPSS
Exploits1References1Affected Software1
NVD
NVD
added 2024/01/16 6:15 p.m.19 views

CVE-2024-22627

Complete Supplier Management System v1.0 is vulnerable to SQL Injection via /SupplyManagementSystem/admin/editdistributor.php?id=...

7.2CVSS7.4AI score0.00707EPSS
Exploits1References1
Vulnrichment
Vulnrichment
added 2024/01/16 12:0 a.m.15 views

CVE-2024-22625

Complete Supplier Management System v1.0 is vulnerable to SQL Injection via /SupplyManagementSystem/admin/editcategory.php?id=...

8.1AI score0.00745EPSS
Exploits1References1
Prion
Prion
added 2023/09/21 11:15 p.m.21 views

Cross site scripting

A stored cross-site scripting XSS vulnerability in the Add Animal Details function of Zoo Management System v1.0 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Description of Animal parameter...

4.3CVSS4.9AI score0.00362EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2023/09/08 12:0 a.m.64 views

CVE-2023-41615

CVE-2023-41615 affects Zoo Management System v1.0, with multiple SQL injection vulnerabilities in the Admin sign‑in page via the username and password fields. The root cause is insufficient input validation on the sign‑in form, enabling arbitrary SQL execution and potential data theft. While seve...

9.8CVSS10AI score0.00798EPSS
Exploits1References3Affected Software1
NVD
NVD
added 2023/08/08 12:15 p.m.17 views

CVE-2023-37688

Maid Hiring Management System v1.0 was discovered to contain a SQL injection vulnerability in the Admin page...

4.8CVSS5.5AI score0.00411EPSS
Exploits1References2
Prion
Prion
added 2023/08/08 12:15 p.m.28 views

Sql injection

Maid Hiring Management System v1.0 was discovered to contain a SQL injection vulnerability in the Admin page...

4.3CVSS5.6AI score0.00411EPSS
Exploits1References4Affected Software1
Prion
Prion
added 2023/08/08 12:15 p.m.18 views

Sql injection

Judging Management System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /php-jms/deductScores.php...

7.5CVSS9.8AI score0.00574EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2023/08/08 12:0 a.m.23 views

CVE-2023-37688

Maid Hiring Management System v1.0 was discovered to contain a SQL injection vulnerability in the Admin page...

5.8AI score0.00411EPSS
Exploits1References2
Prion
Prion
added 2023/07/13 4:15 p.m.19 views

Cross site scripting

A cross-site scripting XSS vulnerability in Maid Hiring Management System v1.0 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Page Description of the /admin/aboutus.php component...

5.8CVSS5.9AI score0.00359EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2023/07/13 12:0 a.m.16 views

CVE-2023-37746

A cross-site scripting XSS vulnerability in Maid Hiring Management System v1.0 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Title parameter of the /admin/contactus.php component...

5.8AI score0.00359EPSS
Exploits0References1
Prion
Prion
added 2023/05/04 3:15 a.m.18 views

Sql injection

Judging Management System v1.0 by oretnom23 was discovered to vulnerable to SQL injection via /php-jms/reviewresult.php?maineventid=, maineventid...

7.5CVSS9.8AI score0.00788EPSS
Exploits1References2Affected Software1
NVD
NVD
added 2023/05/03 9:15 p.m.23 views

CVE-2023-30204

Judging Management System v1.0 was discovered to contain a SQL injection vulnerability via the judgeid parameter at /php-jms/editjudge.php...

9.8CVSS9.8AI score0.00602EPSS
Exploits0References1
Prion
Prion
added 2023/03/03 7:15 p.m.17 views

Sql injection

Judging Management System v1.0 was discovered to contain a SQL injection vulnerability via the sid parameter at /php-jms/updateBlankTxtview.php...

7.5CVSS9.7AI score0.00832EPSS
Exploits1References1Affected Software1
Packet Storm
Packet Storm
added 2022/12/12 12:0 a.m.200 views

Judging Management System 1.0 Shell Upload

Exploit Title: Judging Management System v1.0 - Remote Code Execution RCE Date: 12/11/2022 Exploit Author: Angelo Pio Amirante Vendor Homepage: https://www.sourcecodester.com/ Software Link: https://www.sourcecodester.com/php/15910/judging-management-system-using-php-and-mysql-free-source-code.ht...

7.4AI score
Exploits0
CVE
CVE
added 2022/11/17 12:0 a.m.58 views

CVE-2022-43162

Online Diagnostic Lab Management System v1.0 is affected by a SQL injection vulnerability in the id parameter of /tests/view_test.php. The issue arises from improper SQL handling in the view_test routine, enabling arbitrary data exposure or modification. The CVE entry has a high severity (CVSS v3...

7.2CVSS7.2AI score0.00726EPSS
Exploits1References1Affected Software1
Rows per page
Query Builder