CVE-2023-4556

The CVE-2023-4556 issue affects SourceCodester Online Graduate Tracer System 1.0, where the mysqli_query usage in sexit.php is vulnerable to SQL injection via the id parameter. The vulnerability can be exploited remotely, and public exploits/details have been disclosed (VDB-238154). Affected comp...

CVE-2023-4556 SourceCodester Online Graduate Tracer System sexit.php mysqli_query sql injection

A vulnerability was found in SourceCodester Online Graduate Tracer System 1.0 and classified as critical. Affected by this issue is the function mysqliquery of the file sexit.php. The manipulation of the argument id leads to sql injection. The attack may be launched remotely. The exploit has been...

Sql injection

A vulnerability was found in SourceCodester Online Graduate Tracer System 1.0. It has been classified as critical. This affects the function mysqliquery of the file bsitemp.php. The manipulation of the argument id leads to sql injection. It is possible to initiate the attack remotely. The exploit...

CVE-2023-1394 SourceCodester Online Graduate Tracer System bsitemp.php mysqli_query sql injection

A vulnerability was found in SourceCodester Online Graduate Tracer System 1.0. It has been classified as critical. This affects the function mysqliquery of the file bsitemp.php. The manipulation of the argument id leads to sql injection. It is possible to initiate the attack remotely. The exploit...

Sql injection

A vulnerability was found in SourceCodester Online Graduate Tracer System 1.0 and classified as critical. This issue affects the function mysqliquery of the file admincs.php. The manipulation leads to sql injection. The attack may be initiated remotely. The complexity of an attack is rather high...

CVE-2023-1293 SourceCodester Online Graduate Tracer System admin_cs.php mysqli_query sql injection

A vulnerability was found in SourceCodester Online Graduate Tracer System 1.0 and classified as critical. This issue affects the function mysqliquery of the file admincs.php. The manipulation leads to sql injection. The attack may be initiated remotely. The complexity of an attack is rather high...

CVE-2023-1293

SourceCodester Online Graduate Tracer System 1.0 contains a SQL injection vulnerability in the admin_cs.php file, caused by how mysqli_query handles input. The issue can be triggered remotely and is described as high impact with exploitation disclosed publicly. Some sources cite VDB-222647. Avail...

Reside Property Management 3.0 - 'profile' SQL Injection

Exploit Title: Reside Property Management 3.0 - 'profile' SQL Injection Date: 2020-06-28 Google Dork: "Copyright 2020 Reside Property Management" Exploit Author: Ultra Security Team Ashkan Moghaddas , AmirMohammad Safari Team Members: Behzad Khalifeh , Milad Ranjbar Vendor Homepage:...

CMSsite 1.0 - post SQL Injection

CMSsite 1.0 - post SQL Injection Exploit Title: CMSsite 1.0 - 'post' SQL Injection Exploit Author: Mr Winst0n Author E-mail: [email protected] Discovery Date: February 17, 2019 Vendor Homepage: https://github.com/VictorAlagwu/CMSsite Software Link :...

CMSsite 1.0 SQL Injection

Exploit Title: CMSsite 1.0 - SQL injection Exploit Author : Majid kalantari [email protected] Date: 2019-01-27 Vendor Homepage : https://github.com/VictorAlagwu/CMSsite Software link: https://github.com/VictorAlagwu/CMSsite/archive/master.zip Version: 1.0 Tested on: Windows 10 CVE: N/A...

CMSsite 1.0 - search SQL Injection Vulnerability

Exploit for php platform in category web applications Exploit Title: CMSsite 1.0 - 'search' SQL injection Exploit Author : Majid kalantari email protected Vendor Homepage : https://github.com/VictorAlagwu/CMSsite Software link: https://github.com/VictorAlagwu/CMSsite/archive/master.zip Version: 1...

CMSsite 1.0 - cat_id SQL Injection Vulnerability

Exploit for php platform in category web applications Exploit Title: CMSsite 1.0 - SQL injection Exploit Author : Majid kalantari email protected Vendor Homepage : https://github.com/VictorAlagwu/CMSsite Software link: https://github.com/VictorAlagwu/CMSsite/archive/master.zip Version: 1.0 Tested...

MySQL Edit Table 1.0 - id SQL Injection

MySQL Edit Table 1.0 - id SQL Injection Exploit Title: MySQL Edit Table 1.0 - 'id' SQL Injection Dork: N/A Date: 2018-10-18 Exploit Author: Ihsan Sencan Vendor Homepage: https://www.bookman.nl Software Link: https://sourceforge.net/projects/sql-edit-table/files/latest/download Version: 1.0...

Twitter-Clone 1 SQL Injection

Exploit Title: Twitter-Clone 1 - 'code' SQL Injection Date: 2018-08-22 Exploit Author: L0RD Vendor Homepage: https://github.com/Fyffe/PHP-Twitter-Clone/ Version: 1 CVE: N/A Tested on: Win 10 vulnerable files : mailactivation.php , stalkers.php , search.php vulnerable parameters : name , code , id...