7 matches found
CVE-2026-4571
A security flaw has been discovered in SourceCodester Sales and Inventory System 1.0. Affected by this vulnerability is an unknown functionality of the file /viewpayments.php of the component HTTP POST Request Handler. Performing a manipulation of the argument searchtxt results in sql injection...
SourceCodester Sales and Inventory System SQL注入漏洞
The SourceCodester Sales and Inventory System is an open-source sales and inventory management system developed by SourceCodester. Version 1.0 of the SourceCodester Sales and Inventory System contains a SQL injection vulnerability. This vulnerability arises from improper handling of the searchtxt...
CVE-2023-30614
Pay is a payments engine for Ruby on Rails 6.0 and higher. In versions prior to 6.3.2 a payments info page of Pay is susceptible to reflected Cross-site scripting. An attacker could create a working URL that renders a javascript link to a user on a Rails application that integrates Pay. This URL...
PT-2023-22811 · Pay · Pay
Name of the Vulnerable Software and Affected Versions: Pay versions prior to 6.3.2 Description: A payments info page of Pay is susceptible to reflected Cross-site scripting. An attacker could create a working URL that renders a javascript link to a user on a Rails application that integrates Pay...
PT-2021-16231 · WordPress · Membership & Content Restriction – Paid Member Subscriptions
Name of the Vulnerable Software and Affected Versions: Membership & Content Restriction – Paid Member Subscriptions WordPress plugin versions prior to 2.4.2 Description: The issue concerns the Membership & Content Restriction – Paid Member Subscriptions WordPress plugin, where the order and order...
Ticketmaster Suffers Security Breach – Personal and Payment Data Stolen
Global entertainment ticketing service Ticketmaster has admitted that the company has suffered a security breach, warning customers that their personal and payment information may have been accessed by an unknown third-party. The company has blamed a third-party support customer service chat...
tinkoff.ru XSS vulnerability
Vulnerable URL: https://www.tinkoff.ru/payments/?666alert'OPENBUGBOUNTY'...