368 matches found
CVE-2024-35358
A vulnerability has been discovered in Diño Physics School Assistant version 2.3. The vulnerability impacts an unidentified code within the file /classes/Master.php?f=viewcategory. Manipulating the argument id can result in SQL injection...
Dino Physics School Assistant Security Breach
Dino Physics School Assistant is an application. A security vulnerability exists in Dino Physics School Assistant version 2.3, which stems from a SQL injection vulnerability in the parameter id of the file /classes/Master.php...
Dino Physics School Assistant SQL Injection Vulnerability
Dino Physics School Assistant is an application. A SQL injection vulnerability exists in Dino Physics School Assistant version 2.3, which stems from unrecognized code in /classes/Master.php that causes SQL injection via the parameter id...
Dino Physics School Assistant Security Breach
Dino Physics School Assistant is an application. A security vulnerability exists in Dino Physics School Assistant version 2.3, which stems from a SQL injection vulnerability in the parameter id of the file /classes/Master.php...
PT-2024-26456 · Unknown · Diño Physics School Assistant
Name of the Vulnerable Software and Affected Versions: Diño Physics School Assistant version 2.3 Description: A vulnerability has been discovered that impacts an unidentified code within the file /classes/Master.php?f=delete item. Manipulating the id argument can result in SQL injection...
PT-2024-26453 · Unknown · Diño Physics School Assistant
Name of the Vulnerable Software and Affected Versions: Diño Physics School Assistant version 2.3 Description: A vulnerability has been discovered in the software, impacting an unidentified code within the file /classes/Master.php?f=save category. Manipulating the argument id can result in SQL...
Dino Physics School Assistant Security Breach
Dino Physics School Assistant is an application. A security vulnerability exists in Dino Physics School Assistant version 2.3, which stems from a SQL injection vulnerability in the parameter id of the file /classes/Master.php...
CVE-2024-31544
A stored cross-site scripting XSS vulnerability in Computer Laboratory Management System v1.0 allows attackers to execute arbitrary JavaScript code by including malicious payloads into “remarks”, “borrowername”, “facultydepartment” parameters in /classes/Master.php?f=saverecord...
Computer Laboratory Management System 安全漏洞
Computer Laboratory Management System is a computer laboratory management system. A security vulnerability exists in Sourcecodester Computer Laboratory Management System v1.0 that allows an attacker to execute arbitrary JavaScript code via the remarks, borrowername, facultydepartment parameters i...
CVE-2024-31544
A stored cross-site scripting XSS vulnerability in Computer Laboratory Management System v1.0 allows attackers to execute arbitrary JavaScript code by including malicious payloads into “remarks”, “borrowername”, “facultydepartment” parameters in /classes/Master.php?f=saverecord...
CVE-2024-31544
CVE-2024-31544 applies to the Computer Laboratory Management System v1.0. The vulnerability is a stored cross-site scripting (XSS) flaw that allows an attacker to inject arbitrary JavaScript through the fields “remarks”, “borrower_name” and “faculty_department” in the API endpoint /classes/Master...
PT-2024-23957 · Sourcecodester · Sourcecodester Computer Laboratory Management System
Name of the Vulnerable Software and Affected Versions: SourceCodester Computer Laboratory Management System version 1.0 Description: A critical issue has been identified, affecting the /classes/Master.php?f=save category file. The id argument is vulnerable to manipulation, leading to sql injectio...
Music Gallery Site 代码问题漏洞
Music Gallery Site is a music gallery site by the individual developer Carlo Montero. A code issue vulnerability exists in SourceCodester Music Gallery Site version 1.0, which stems from a file upload vulnerability in the file classes/Master.php...
Medicine Tracker System SQL Injection Vulnerability
Medicine Tracker System is a medicine tracking system by Carlo Montero Personal Developer. A SQL injection vulnerability exists in SourceCodester Medicine Tracking System version 1.0, which stems from some unknown processing in /classes/Master.php that leads to SQL injection via the parameters...
CVE-2023-5925 Campcodes Simple Student Information System Master.php sql injection
A vulnerability, which was classified as critical, has been found in Campcodes Simple Student Information System 1.0. This issue affects some unknown processing of the file /classes/Master.php. The manipulation of the argument f leads to sql injection. The exploit has been disclosed to the public...
CVE-2023-5925 Campcodes Simple Student Information System Master.php sql injection
A vulnerability, which was classified as critical, has been found in Campcodes Simple Student Information System 1.0. This issue affects some unknown processing of the file /classes/Master.php. The manipulation of the argument f leads to sql injection. The exploit has been disclosed to the public...
PT-2023-32423 · Campcodes · Campcodes Simple Student Information System
Name of the Vulnerable Software and Affected Versions: Campcodes Simple Student Information System version 1.0 Description: A critical issue has been found in the processing of the file /classes/Master.php. The manipulation of the argument f leads to sql injection. The exploit has been disclosed ...
CVE-2023-5814
A vulnerability was found in SourceCodester Task Reminder System 1.0. It has been classified as critical. This affects an unknown part of the file /classes/Master.php?f=savereminder. The manipulation of the argument id leads to sql injection. It is possible to initiate the attack remotely. The...
CVE-2023-5814 SourceCodester Task Reminder System sql injection
A vulnerability was found in SourceCodester Task Reminder System 1.0. It has been classified as critical. This affects an unknown part of the file /classes/Master.php?f=savereminder. The manipulation of the argument id leads to sql injection. It is possible to initiate the attack remotely. The...
CVE-2023-5813 SourceCodester Task Reminder System sql injection
A vulnerability was found in SourceCodester Task Reminder System 1.0 and classified as critical. Affected by this issue is some unknown functionality of the file /classes/Master.php?f=deletereminder. The manipulation of the argument id leads to sql injection. The attack may be launched remotely...