4 matches found
CVE-2024-11819
A vulnerability classified as critical was found in 1000 Projects Portfolio Management System MCA 1.0. This vulnerability affects unknown code of the file /forgotpasswordprocess.php. The manipulation of the argument username leads to sql injection. The attack can be initiated remotely. The exploi...
CVE-2024-11819
A vulnerability classified as critical was found in 1000 Projects Portfolio Management System MCA 1.0. This vulnerability affects unknown code of the file /forgotpasswordprocess.php. The manipulation of the argument username leads to sql injection. The attack can be initiated remotely. The exploi...
CVE-2024-11744
CVE-2024-11744 affects the 1000 Projects Portfolio Management System MCA (version 1.0). The vulnerability is an SQL injection in an unknown function exposed via /register.php; the argument name manipulation allows remote exploitation, and multiple sources indicate the exploit is publicly disclose...
CVE-2024-11256
CVE-2024-11256 details (NORMAL) : Affects 1000 Projects Portfolio Management System MCA 1.0. The vulnerability is a SQL injection in the login.php flow caused by unsafely handling the username parameter, enabling remote abuse. Descriptions consistently classify this as critical with potential rem...