Lucene search
K

124 matches found

Prion
Prion
added 2022/01/24 5:15 p.m.10 views

Cross site scripting

Cross Site Scripting XSS in Sourcecodester Student Quarterly Grading System by oretnom23, allows attackers to execute arbitrary code via the fullname and username parameters to the users page...

3.5CVSS5.6AI score0.00728EPSS
Exploits1References1Affected Software1
OSV
OSV
added 2022/01/24 4:15 p.m.2 views

CVE-2021-41472

SQL injection vulnerability in Sourcecodester Simple Membership System v1 by oretnom23, allows attackers to execute arbitrary SQL commands via the username and password parameters...

9.8CVSS6.1AI score0.01254EPSS
Exploits1References1
Prion
Prion
added 2022/01/24 4:15 p.m.16 views

Sql injection

SQL injection vulnerability in Sourcecodester South Gate Inn Online Reservation System v1 by oretnom23, allows attackers to execute arbitrary SQL commands via the email and Password parameters...

7.5CVSS9.9AI score0.01228EPSS
Exploits1References1Affected Software1
Prion
Prion
added 2022/01/24 4:15 p.m.11 views

Sql injection

SQL injection vulnerability in Sourcecodester Simple Membership System v1 by oretnom23, allows attackers to execute arbitrary SQL commands via the username and password parameters...

7.5CVSS10AI score0.01254EPSS
Exploits1References1Affected Software1
Cvelist
Cvelist
added 2022/01/24 3:54 p.m.18 views

CVE-2021-41472

SQL injection vulnerability in Sourcecodester Simple Membership System v1 by oretnom23, allows attackers to execute arbitrary SQL commands via the username and password parameters...

10AI score0.01254EPSS
Exploits1References1
CVE
CVE
added 2022/01/24 3:54 p.m.39 views

CVE-2021-41472

CVE-2021-41472 concerns the Sourcecodester Simple Membership System v1 by oretnom23. The vulnerability is a SQL injection in the login flow, exploitable via the username and password parameters to execute arbitrary SQL commands. Affected component is the login/authentication handling; underlying ...

9.8CVSS10AI score0.01254EPSS
Exploits1References1Affected Software1
Cvelist
Cvelist
added 2022/01/24 3:34 p.m.17 views

CVE-2021-41471

SQL injection vulnerability in Sourcecodester South Gate Inn Online Reservation System v1 by oretnom23, allows attackers to execute arbitrary SQL commands via the email and Password parameters...

10AI score0.01228EPSS
Exploits1References1
NVD
NVD
added 2022/01/24 3:15 p.m.22 views

CVE-2021-40907

SQL injection vulnerability in Sourcecodester Storage Unit Rental Management System v1 by oretnom23, allows attackers to execute arbitrary SQL commands via the username parameter to /storage/classes/Login.php...

9.8CVSS0.01254EPSS
Exploits1References1
Prion
Prion
added 2022/01/24 3:15 p.m.23 views

Sql injection

SQL injection vulnerability in Login.php in Sourcecodester Purchase Order Management System v1 by oretnom23, allows attackers to execute arbitrary SQL commands via the username parameter...

7.5CVSS9.9AI score0.02534EPSS
Exploits1References1Affected Software1
CVE
CVE
added 2022/01/24 2:54 p.m.57 views

CVE-2021-40908

The CVE-2021-40908 issue affects Sourcecodester Purchase Order Management System v1.0, via Login.php where the username parameter is vulnerable to SQL injection. The underlying root cause is improper handling/validation of externally supplied SQL statements, enabling an attacker to run arbitrary ...

9.8CVSS9.9AI score0.02534EPSS
Exploits1References1Affected Software1
Cvelist
Cvelist
added 2022/01/24 2:54 p.m.27 views

CVE-2021-40908

SQL injection vulnerability in Login.php in Sourcecodester Purchase Order Management System v1 by oretnom23, allows attackers to execute arbitrary SQL commands via the username parameter...

10AI score0.02534EPSS
Exploits1References1
CVE
CVE
added 2022/01/24 2:30 p.m.49 views

CVE-2021-40596

The CVE-2021-40596 entry concerns a SQL injection in the Login.php file of the sourcecodester Online Learning System v2 (by oretnom23). The vulnerability is exploitable via the faculty_id parameter, allowing an attacker to execute arbitrary SQL commands. Public references in connected documents c...

9.8CVSS9.9AI score0.01254EPSS
Exploits1References1Affected Software1
Prion
Prion
added 2022/01/21 8:15 p.m.14 views

Sql injection

SQL injection vulnerability in Sourcecodester Online Leave Management System v1 by oretnom23, allows attackers to execute arbitrary SQL commands via the username parameter to /leavesystem/classes/Login.php...

7.5CVSS9.8AI score0.01356EPSS
Exploits1References2Affected Software1
NVD
NVD
added 2022/01/21 7:15 p.m.18 views

CVE-2021-40247

SQL injection vulnerability in Sourcecodester Budget and Expense Tracker System v1 by oretnom23, allows attackers to execute arbitrary SQL commands via the username field...

9.8CVSS0.02592EPSS
Exploits1References2
CVE
CVE
added 2022/01/21 6:58 p.m.62 views

CVE-2021-40247

CVE-2021-40247 affects Sourcecodester Budget and Expense Tracker System v1.0. The vulnerability is an SQL injection via the username field caused by inadequate SQL data escaping/filtering. Exploitation in the wild is not described in the provided documents, but CVSS data indicates a high/critical...

9.8CVSS9.9AI score0.02592EPSS
Exploits1References2Affected Software1
Cvelist
Cvelist
added 2022/01/21 6:58 p.m.26 views

CVE-2021-40247

SQL injection vulnerability in Sourcecodester Budget and Expense Tracker System v1 by oretnom23, allows attackers to execute arbitrary SQL commands via the username field...

10AI score0.02592EPSS
Exploits1References2
CNNVD
CNNVD
added 2021/11/17 12:0 a.m.5 views

oretnom23 Company Recruitment Management System SQL注入漏洞

oretnom23 Company Recruitment Management System is an open source Company Recruitment Management System from the individual developers of oretnom23. A SQL injection vulnerability exists in oretnom23 Company Recruitment Management System, which can be exploited by attackers to perform SQL injectio...

9.8CVSS8.5AI score0.01273EPSS
Exploits1References2
NVD
NVD
added 2021/10/29 4:15 p.m.15 views

CVE-2021-41676

An SQL Injection vulnerabilty exists in the oretnom23 Pharmacy Point of Sale System 1.0 in the login function in actions.php...

9.8CVSS0.01426EPSS
Exploits1References2
CVE
CVE
added 2021/10/29 3:54 p.m.41 views

CVE-2021-41676

CVE-2021-41676 is tied to the oretnom23 Pharmacy Point of Sale System 1.0, with a reported SQL Injection in the login function (actions.php). The Red Hat and NVD entries corroborate the vulnerability in the same component/function, indicating a high/critical impact profile. Public details in conn...

9.8CVSS9.8AI score0.01426EPSS
Exploits1References2Affected Software1
Cvelist
Cvelist
added 2021/10/29 3:54 p.m.20 views

CVE-2021-41676

An SQL Injection vulnerabilty exists in the oretnom23 Pharmacy Point of Sale System 1.0 in the login function in actions.php...

10AI score0.01426EPSS
Exploits1References2
Rows per page
Query Builder