981 matches found
Sql injection
A vulnerability was found in SourceCodester Web-Based Student Clearance System. It has been classified as critical. Affected is an unknown function of the file /Admin/login.php of the component POST Parameter Handler. The manipulation of the argument txtusername leads to sql injection. It is...
The vulnerability of the router.php implementation of the POST Parameter Handler in the Food Ordering Management System allows a perpetrator to execute arbitrary SQL code.
The vulnerability in the implementation of the router.php script of the POST Parameter Handler component of the Food Ordering Management System’s control system is related to insufficient cleaning of special elements during the processing of the user name parameter. Exploiting this vulnerability...
Sql injection
A vulnerability classified as critical has been found in SourceCodester Food Ordering Management System. This affects an unknown part of the file router.php of the component POST Parameter Handler. The manipulation of the argument username leads to sql injection. It is possible to initiate the...
CVE-2022-3332 SourceCodester Food Ordering Management System POST Parameter router.php sql injection
A vulnerability classified as critical has been found in SourceCodester Food Ordering Management System. This affects an unknown part of the file router.php of the component POST Parameter Handler. The manipulation of the argument username leads to sql injection. It is possible to initiate the...
CVE-2022-2700
A vulnerability classified as critical has been found in SourceCodester Gym Management System. This affects an unknown part of the component GET Parameter Handler. The manipulation of the argument day leads to sql injection. It is possible to initiate the attack remotely. The exploit has been...
Sql injection
A vulnerability classified as critical has been found in SourceCodester Gym Management System. This affects an unknown part of the component GET Parameter Handler. The manipulation of the argument day leads to sql injection. It is possible to initiate the attack remotely. The exploit has been...
CVE-2022-2700
CVE-2022-2700 affects SourceCodester Gym Management System, via the GET Parameter Handler’s day parameter. The vulnerability allows remote SQL injection, with the exploit publicly disclosed. Impact is described as high (CVE data via NVD). Connected sources indicate no fix/version details are prov...
Sql injection
A vulnerability was found in SourceCodester Expense Management System. It has been rated as critical. This issue affects the function fetchreportcredit of the file report.php of the component POST Parameter Handler. The manipulation of the argument from/to leads to sql injection. The attack may b...
CVE-2022-2688 SourceCodester Expense Management System POST Parameter report.php fetch_report_credit sql injection
A vulnerability was found in SourceCodester Expense Management System. It has been rated as critical. This issue affects the function fetchreportcredit of the file report.php of the component POST Parameter Handler. The manipulation of the argument from/to leads to sql injection. The attack may b...
CVE-2022-2688
CVE-2022-2688 affects SourceCodester Expense Management System. The vulnerability resides in the POST Parameter Handler, specifically the fetch_report_credit function in report.php, where the from/to argument is manipulated, leading to a SQL injection. It is exploitable remotely and impacts confi...
PT-2022-18120 · Sourcecodester · Sourcecodester Expense Management System
Name of the Vulnerable Software and Affected Versions: SourceCodester Expense Management System affected versions not specified Description: A critical issue affects the function fetch report credit of the file report.php in the component POST Parameter Handler. The manipulation of the argument...
CVE-2022-2643
A vulnerability has been found in SourceCodester Online Admission System and classified as critical. This vulnerability affects unknown code of the component POST Parameter Handler. The manipulation of the argument shift leads to sql injection. The attack can be initiated remotely. The exploit ha...
Sql injection
A vulnerability was found in SourceCodester Online Admission System and classified as critical. This issue affects some unknown processing of the component GET Parameter Handler. The manipulation of the argument eid leads to sql injection. The exploit has been disclosed to the public and may be...
Sql injection
A vulnerability has been found in SourceCodester Online Admission System and classified as critical. This vulnerability affects unknown code of the component POST Parameter Handler. The manipulation of the argument shift leads to sql injection. The attack can be initiated remotely. The exploit ha...
CVE-2022-2644 SourceCodester Online Admission System GET Parameter sql injection
A vulnerability was found in SourceCodester Online Admission System and classified as critical. This issue affects some unknown processing of the component GET Parameter Handler. The manipulation of the argument eid leads to sql injection. The exploit has been disclosed to the public and may be...
CVE-2022-2644
CVE-2022-2644 affects the SourceCodester Online Admission System, specifically the GET Parameter Handler’s eid parameter, where manipulation leads to SQL injection. Multiple connected sources confirm a critical impact with public disclosure of exploits (VDB-205565) and no consistent vendor fix in...
CVE-2022-2643 SourceCodester Online Admission System POST Parameter sql injection
A vulnerability has been found in SourceCodester Online Admission System and classified as critical. This vulnerability affects unknown code of the component POST Parameter Handler. The manipulation of the argument shift leads to sql injection. The attack can be initiated remotely. The exploit ha...
PT-2022-17838 · Sourcecodester · Sourcecodester Online Admission System
Name of the Vulnerable Software and Affected Versions: SourceCodester Online Admission System affected versions not specified Description: A critical issue has been found in the component POST Parameter Handler, where the manipulation of the shift argument leads to SQL injection. The attack can b...
CVE-2022-1085
A vulnerability was found in CLTPHP up to 6.0. It has been declared as problematic. Affected by this vulnerability is the POST Parameter Handler. The manipulation leads to cross site scripting. The attack can be launched remotely. The exploit has been disclosed to the public and may be used...
CVE-2022-1085
A vulnerability was found in CLTPHP up to 6.0. It has been declared as problematic. Affected by this vulnerability is the POST Parameter Handler. The manipulation leads to cross site scripting. The attack can be launched remotely. The exploit has been disclosed to the public and may be used...