59 matches found
EUVD-2023-34835
Malicious code in bioql PyPI...
EUVD-2024-53610
Malicious code in bioql PyPI...
EUVD-2023-51115
Malicious code in bioql PyPI...
EUVD-2023-50654
Malicious code in bioql PyPI...
CVE-2024-48427
A SQL injection vulnerability in Sourcecodester Packers and Movers Management System v1.0 allows remote authenticated users to execute arbitrary SQL commands via the id parameter in /mpms/admin/?page=services/manageservice...
CVE-2023-46956
SQL injection vulnerability in Packers and Movers Management System v.1.0 allows a remote attacker to execute arbitrary code via crafted payload to the /mpms/admin/?page=user/manageuser file...
CVE-2023-30415
Sourcecodester Packers and Movers Management System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /inquiries/viewinquiry.php...
CVE-2024-57523
Cross Site Request Forgery CSRF in Users.php in SourceCodester Packers and Movers Management System 1.0 allows attackers to create unauthorized admin accounts via crafted requests sent to an authenticated admin user...
CVE-2024-57523
Cross Site Request Forgery CSRF in Users.php in SourceCodester Packers and Movers Management System 1.0 allows attackers to create unauthorized admin accounts via crafted requests sent to an authenticated admin user...
CVE-2024-57523
Cross Site Request Forgery CSRF in Users.php in SourceCodester Packers and Movers Management System 1.0 allows attackers to create unauthorized admin accounts via crafted requests sent to an authenticated admin user...
CVE-2024-57523
Cross Site Request Forgery CSRF in Users.php in SourceCodester Packers and Movers Management System 1.0 allows attackers to create unauthorized admin accounts via crafted requests sent to an authenticated admin user...
SourceCodester Packers and Movers Management System 安全漏洞
SourceCodester Packers and Movers Management System is an open source packers and movers management system from Sourcecodester. A security vulnerability exists in version 1.0 of the SourceCodester Packers and Movers Management System, which stems from Users.php containing a cross-site request...
CVE-2024-57523
CVE-2024-57523 corresponds to a CSRF vulnerability in the Users.php endpoint of SourceCodester Packers and Movers Management System 1.0. Exploitation requires an authenticated admin user to visit a crafted page, enabling attackers to create unauthorized admin accounts (privilege escalation) with ...
CVE-2024-57523
Cross Site Request Forgery CSRF in Users.php in SourceCodester Packers and Movers Management System 1.0 allows attackers to create unauthorized admin accounts via crafted requests sent to an authenticated admin user...
CVE-2024-57522
SourceCodester Packers and Movers Management System v1.0 is vulnerable to Cross Site Scripting XSS in Users.php. An attacker can inject a malicious script into the username or name field during user creation...
CVE-2024-57522
SourceCodester Packers and Movers Management System v1.0 is vulnerable to Cross Site Scripting XSS in Users.php. An attacker can inject a malicious script into the username or name field during user creation...
Exploit for Cross-Site Request Forgery (CSRF) in Oretnom23 Packers_And_Movers_Management_System
CVE-2024-57523 - CSRF Vulnerability in Users.php - SourceCodes...
CVE-2024-48427
A SQL injection vulnerability in Sourcecodester Packers and Movers Management System v1.0 allows remote authenticated users to execute arbitrary SQL commands via the id parameter in /mpms/admin/?page=services/manageservice&id...
CVE-2024-48427
A SQL injection vulnerability in Sourcecodester Packers and Movers Management System v1.0 allows remote authenticated users to execute arbitrary SQL commands via the id parameter in /mpms/admin/?page=services/manageservice&id...
CVE-2024-48427
A SQL injection vulnerability in Sourcecodester Packers and Movers Management System v1.0 allows remote authenticated users to execute arbitrary SQL commands via the id parameter in /mpms/admin/?page=services/manageservice&id...