CVE-2024-2146

A vulnerability was found in SourceCodester Online Mobile Management Store 1.0. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the file /?p=products. The manipulation of the argument search leads to cross site scripting. The attack can be launch...

CVE-2024-2153

A vulnerability, which was classified as critical, was found in SourceCodester Online Mobile Management Store 1.0. This affects an unknown part of the file /admin/orders/vieworder.php. The manipulation of the argument id leads to sql injection. It is possible to initiate the attack remotely. The...

CVE-2024-2151

A vulnerability classified as problematic was found in SourceCodester Online Mobile Management Store 1.0. Affected by this vulnerability is an unknown functionality of the component Product Price Handler. The manipulation of the argument quantity with the input -1 leads to business logic errors...

CVE-2024-2152

A vulnerability, which was classified as critical, has been found in SourceCodester Online Mobile Management Store 1.0. Affected by this issue is some unknown functionality of the file /admin/product/manageproduct.php. The manipulation of the argument id leads to sql injection. The attack may be...

EUVD-2024-27115

Malicious code in bioql PyPI...

EUVD-2024-27112

Malicious code in bioql PyPI...

CVE-2024-2154

A vulnerability has been found in SourceCodester Online Mobile Management Store 1.0 and classified as critical. This vulnerability affects unknown code of the file viewproduct.php. The manipulation of the argument id leads to sql injection. The attack can be initiated remotely. The exploit has be...

MSMS-PHP 1.0 Insecure Settings

============================================================================================================================================= | Title : MSMS-PHP v1.0 Insecure Settings Vulnerability | | Author : indoushka | | Tested on : windows 10 FrPro / browser : Mozilla firefox 125.0.1 64 bits...

Sql injection

A vulnerability was found in SourceCodester Online Mobile Management Store 1.0. It has been rated as critical. This issue affects some unknown processing of the file /admin/maintenance/managecategory.php of the component HTTP GET Request Handler. The manipulation of the argument id leads to sql...

CVE-2024-2332 SourceCodester Online Mobile Management Store HTTP GET Request manage_category.php sql injection

A vulnerability was found in SourceCodester Online Mobile Management Store 1.0. It has been rated as critical. This issue affects some unknown processing of the file /admin/maintenance/managecategory.php of the component HTTP GET Request Handler. The manipulation of the argument id leads to sql...

CVE-2024-2332

CVE-2024-2332 concerns SourceCodester Online Mobile Management Store 1.0. The vulnerability affects the HTTP GET Request Handler used by the /admin/maintenance/manage_category.php file, where manipulation of the argument id leads to SQL injection. Multiple connected records corroborate remote exp...

Online Mobile Management Store SQL Injection Vulnerability

Online Mobile Management Store is an online mobile store management system. A SQL injection vulnerability exists in Online Mobile Management Store version 1.0, which stems from an incorrect manipulation of the parameter id that can lead to sql injection...

PT-2024-19807 · Unknown · Sourcecodester Online Mobile Management Store

Name of the Vulnerable Software and Affected Versions: SourceCodester Online Mobile Management Store version 1.0 Description: A critical issue affects the processing of the file /admin/maintenance/manage category.php in the HTTP GET Request Handler component. The manipulation of the id argument...

Online Mobile Store Management System Cross-Site Scripting Vulnerability

Online Mobile Store Management System is an online mobile store management system. A cross-site scripting vulnerability exists in Online Mobile Store Management System version 1.0, which stems from the lack of effective filtering and escaping of user-supplied data in the /?p=products file, and ca...

CVE-2024-2154

CVE-2024-2154 affects SourceCodester Online Mobile Management Store 1.0, specifically the view_product.php file where the id parameter enables SQL injection. The vulnerability is exploitable remotely and has been disclosed publicly (VDB-255586); impact is high for confidentiality, integrity, and ...

CVE-2024-2153

CVE-2024-2153 affects SourceCodester Online Mobile Management Store 1.0, with SQL injection in the /admin/orders/view_order.php file caused by manipulation of the id parameter. Exploitation appears possible remotely and public disclosure exists (VDB-255585). Public-available sources describe the ...

CVE-2024-2153 SourceCodester Online Mobile Management Store view_order.php sql injection

A vulnerability, which was classified as critical, was found in SourceCodester Online Mobile Management Store 1.0. This affects an unknown part of the file /admin/orders/vieworder.php. The manipulation of the argument id leads to sql injection. It is possible to initiate the attack remotely. The...

CVE-2024-2153 SourceCodester Online Mobile Management Store view_order.php sql injection

A vulnerability, which was classified as critical, was found in SourceCodester Online Mobile Management Store 1.0. This affects an unknown part of the file /admin/orders/vieworder.php. The manipulation of the argument id leads to sql injection. It is possible to initiate the attack remotely. The...

CVE-2024-2152

A vulnerability, which was classified as critical, has been found in SourceCodester Online Mobile Management Store 1.0. Affected by this issue is some unknown functionality of the file /admin/product/manageproduct.php. The manipulation of the argument id leads to sql injection. The attack may be...

Input validation

A vulnerability classified as problematic was found in SourceCodester Online Mobile Management Store 1.0. Affected by this vulnerability is an unknown functionality of the component Product Price Handler. The manipulation of the argument quantity with the input -1 leads to business logic errors...