82 matches found
Sourcecoester Theme Park Ticketing System SQL注入漏洞
Sourcecoester Theme Park Ticketing System is an application. A simple PHP/MySQLi project that helps manage and generate tickets for theme park or amusement park visitors. sourcecoester Theme Park Ticketing System v1.0 is vulnerable to a SQL injection vulnerability, which stems from a missing...
Attendance and Payroll System SQL注入漏洞(CNVD-2022-33143)
Attendance and Payroll System is a PHP/MySQLi source code attendance and payroll system by oretnom23 individual developers. version v1.0 of Attendance and Payroll System is vulnerable to SQL injection, which originates from the component adminovertime delete.php lacks validation of external input...
Attendance and Payroll System SQL注入漏洞(CNVD-2022-33144)
Attendance and Payroll System is a PHP/MySQLi source code attendance and payroll system from oretnom23 individual developers. version v1.0 of Attendance and Payroll System is vulnerable to SQL injection, which originates from the component adminemployee edit.php lacks validation of external input...
Attendance and Payroll System SQL注入漏洞(CNVD-2022-33137)
Attendance and Payroll System is a PHP/MySQLi source code attendance and payroll system from oretnom23 individual developers. v1.0 of Attendance and Payroll System is vulnerable to SQL injection, which originates from the component adminschedule employeeedit.php lacks validation of external input...
Attendance and Payroll System SQL注入漏洞(CNVD-2022-33141)
Attendance and Payroll System is a PHP/MySQLi source code attendance and payroll system from oretnom23 individual developers. version v1.0 of Attendance and Payroll System is vulnerable to SQL injection, which originates from the component adminposition delete.php lacks validation for external...
Attendance and Payroll System SQL注入漏洞(CNVD-2022-33145)
Attendance and Payroll System is a PHP/MySQLi source code attendance and payroll system from oretnom23 individual developers. version v1.0 of Attendance and Payroll System is vulnerable to SQL injection, which originates from the component adminemployee delete.php lacks validation of external inp...
Attendance and Payroll System SQL注入漏洞(CNVD-2022-33149)
Attendance and Payroll System is an attendance and payroll system using PHP/MySQLi source code from oretnom23 individual developers.Attendance and Payroll System v1.0 is vulnerable to SQL injection, which originates from the component adminattendanceedit.php lacks validation for external input SQ...
Attendance and Payroll System SQL注入漏洞(CNVD-2022-33140)
Attendance and Payroll System is a PHP/MySQLi source code attendance and payroll system by oretnom23 individual developers. version v1.0 of Attendance and Payroll System is vulnerable to SQL injection, which originates from the component adminposition edit.php lacks validation of external input S...
Attendance and Payroll System SQL注入漏洞
Attendance and Payroll System is an attendance and payroll system using PHP/MySQLi source code from oretnom23 individual developers. version v1.0 of Attendance and Payroll System is vulnerable to SQL injection, which originates from the component adminattendancedelete.php lacks validation for...
Attendance and Payroll System SQL注入漏洞(CNVD-2022-33138)
Attendance and Payroll System is a PHP/MySQLi source code attendance and payroll system by oretnom23 individual developers. version v1.0 of Attendance and Payroll System is vulnerable to SQL injection, which originates from the component adminschedule edit.php lacks validation of external input S...
Attendance and Payroll System SQL注入漏洞(CNVD-2022-33147)
Attendance and Payroll System is a PHP/MySQLi source code attendance and payroll system from oretnom23 individual developers. version v1.0 of Attendance and Payroll System is vulnerable to SQL injection, which originates from the component admincashadvanceedit.php lacks validation for external...
Sourcecodester Attendance and Payroll System SQL注入漏洞
Attendance and Payroll System is an attendance and payroll system using PHP/MySQLi source code from oretnom23 individual developers. sourcecodester Attendance and Payroll System is vulnerable to SQL injection, which can be exploited by remote attackers to bypass authentication via unprocessed log...
Cross site scripting
A Cross Site Scripting XSS vulnerabilty exists in Sourcecodester Gadget Works Online Ordering System in PHP/MySQLi 1.0 via the Category parameter in an add function in category/index.php...
Online Enrollment Management System 1.0 SQL Injection
Exploit Title: Online Enrollment Management System 1.0 - Authentication Bypass Date: 07.10.2021 Exploit Author: Amine ismail @aminei Vendor Homepage: https://www.sourcecodester.com/php/12914/online-enrollment-management-system-paypal-payments-phpmysqli.html Software Link:...
SourceCodester Theme Park Ticketing System SQL Injection Vulnerability
SourceCodester Theme Park Ticketing System is a software application. A simple PHP/MySQLi project that helps to manage and generate tickets for theme park or amusement park visitors. SourceCodester Theme Park Ticketing System suffers from a SQL injection vulnerability that stems from a lack of...
Billing Management System 2.0 - Union based SQL injection (Authenticated) Vulnerability
Exploit Title: Billing Management System 2.0 - Union based SQL injection Authenticated Exploit Author: Mohammad Koochaki Vendor Homepage: https://www.sourcecodester.com/php/14380/billing-management-system-php-mysql-updated.html Software Link:...
Voting System 1.0 SQL Injection
Exploit Title: Voting System 1.0 - Authentication Bypass SQLI Date: 06/05/2021 Exploit Author: secure77 Vendor Homepage: https://www.sourcecodester.com/php/12306/voting-system-using-php.html Software Link:...
XSS Vulnerability in Heybbs Frontend
HEYBBS Micro Community is a bootstrap+php+mysqli based development program. Heybbs frontend has an XSS vulnerability that can be exploited by attackers to obtain user cookie information...
Doctor Appointment System SQL Injection Vulnerability (CNVD-2021-22960)
Doctor Appointment System is a PHP/MySQLi based doctor appointment system. A SQL blind injection vulnerability exists in contactus.php in Doctor Appointment System 1.0. An attacker can exploit this vulnerability to insert malicious SQL queries via the firstname parameter...
Online News Portal 1.0 Cross Site Scripting Vulnerability
Online News Portal version 1.0 suffers from a persistent cross site scripting vulnerability. Original discovery of persistent cross site scripting in this version was made by Parshwa Bhavsar in December of 2020. Exploit Title: Online News Portal | Stored Cross-Site Scripting Exploit Author: Richa...