Lucene search
K

82 matches found

Packet Storm
Packet Storm
added 2021/03/15 12:0 a.m.394 views

Online News Portal 1.0 SQL Injection

Exploit Title: Online News Portal | 'searchtitle' SQL Injection Exploit Author: Richard Jones Date: 2021-03-15 Vendor Homepage: https://www.sourcecodester.com/php/14741/online-news-portal-using-phpmysqli-free-download-source-code.html Software Link:...

Exploits0
CNVD
CNVD
added 2021/03/05 12:0 a.m.9 views

Doctor Appointment System SQL Injection Vulnerability (CNVD-2021-39522)

Doctor Appointment System is a PHP/MySQLi based doctor appointment system. A SQL injection vulnerability exists in admin.php in Doctor Appointment System 1.0, which can be exploited to insert a malicious SQL query via the username parameter on the login page...

9.8CVSS7.6AI score0.12394EPSS
Exploits3References1
NVD
NVD
added 2021/01/26 6:15 p.m.17 views

CVE-2020-35309

Bakeshop Online Ordering System in PHP/MySQLi 1.0 is affected by cross-site scripting XSS which allows remote attackers to inject an arbitrary web script or HTML in admin dashboard - "Categories"...

4.8CVSS5AI score0.00709EPSS
Exploits1References1
OSV
OSV
added 2021/01/26 6:15 p.m.4 views

CVE-2020-29241

Online News Portal using PHP/MySQLi 1.0 is affected by cross-site scripting XSS which allows remote attackers to inject an arbitrary web script or HTML via the "Title" parameter...

4.8CVSS5.8AI score0.00632EPSS
Exploits0References1
Prion
Prion
added 2021/01/26 6:15 p.m.13 views

Cross site scripting

Online News Portal using PHP/MySQLi 1.0 is affected by cross-site scripting XSS which allows remote attackers to inject an arbitrary web script or HTML via the "Title" parameter...

3.5CVSS5AI score0.00632EPSS
Exploits0References1Affected Software1
Prion
Prion
added 2021/01/26 6:15 p.m.11 views

Cross site scripting

Bakeshop Online Ordering System in PHP/MySQLi 1.0 is affected by cross-site scripting XSS which allows remote attackers to inject an arbitrary web script or HTML in admin dashboard - "Categories"...

3.5CVSS4.9AI score0.00709EPSS
Exploits1References1Affected Software1
Packet Storm
Packet Storm
added 2021/01/26 12:0 a.m.187 views

Cemetery Mapping And Information System 1.0 SQL Injection

Exploit Title: Cemetry Mapping and Information System 1.0 - 'useremail' Sql Injection Authentication Bypass Exploit Author: Marco Catalano Date: 2021-01-25 Vendor Homepage: https://www.sourcecodester.com/php/12779/cemetery-mapping-and-information-system-using-phpmysqli.html Software Link:...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2021/01/26 12:0 a.m.462 views

Simple College Website 1.0 - 'name' Sql Injection (Authentication Bypass)

Exploit Title: Simple College Website 1.0 - 'name' Sql Injection Authentication Bypass Exploit Author: Marco Catalano @stunn4 Date: 2021-01-25 Vendor Homepage: https://www.sourcecodester.com/php/7772/simple-college-website-using-php-and-mysql.html Software Link:...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2021/01/26 12:0 a.m.401 views

Simple College Website 1.0 - 'full' Stored Cross Site Scripting

Exploit Title: Simple College Website 1.0 - 'full' Stored Cross Site Scripting Exploit Author: Marco Catalano @stunn4 Date: 2021-01-25 Vendor Homepage: https://www.sourcecodester.com/php/7772/simple-college-website-using-php-and-mysql.html Software Link:...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2021/01/26 12:0 a.m.349 views

Cemetry Mapping and Information System 1.0 - 'user_email' Sql Injection (Authentication Bypass)

Exploit Title: Cemetry Mapping and Information System 1.0 - 'useremail' Sql Injection Authentication Bypass Exploit Author: Marco Catalano Date: 2021-01-25 Vendor Homepage: https://www.sourcecodester.com/php/12779/cemetery-mapping-and-information-system-using-phpmysqli.html Software Link:...

7.4AI score
Exploits0
Cvelist
Cvelist
added 2021/01/21 2:41 p.m.20 views

CVE-2020-29241

Online News Portal using PHP/MySQLi 1.0 is affected by cross-site scripting XSS which allows remote attackers to inject an arbitrary web script or HTML via the "Title" parameter...

5AI score0.00632EPSS
Exploits0References1
Cvelist
Cvelist
added 2021/01/20 3:38 p.m.21 views

CVE-2020-35272

Employee Performance Evaluation System in PHP/MySQLi with Source Code 1.0 is affected by cross-site scripting XSS in the Admin Portal in the Task and Description fields...

5.1AI score0.00591EPSS
Exploits1References1
Exploit DB
Exploit DB
added 2021/01/15 12:0 a.m.287 views

Online Hotel Reservation System 1.0 - 'description' Stored Cross-site Scripting

Exploit Title: Online Hotel Reservation System 1.0 - Stored Cross-site Scripting Exploit Author: Mesut Cetin Date: 2021-01-14 Vendor Homepage: https://www.sourcecodester.com/php/13492/online-hotel-reservation-system-phpmysqli.html Software Link:...

7.4AI score
Exploits0
Packet Storm
Packet Storm
added 2021/01/13 12:0 a.m.198 views

Online Hotel Reservation 1.0 SQL Injection

Exploit Title: Online Hotel Reservation 1.0 - Admin Authentication Bypass Exploit Author: Richard Jones Note: Shout out to boku Bobby Cooke for helping me get started on 0day's!! Date: 2021-01-13 Vendor Homepage:...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2021/01/13 12:0 a.m.182 views

Online Hotel Reservation System 1.0 - Admin Authentication Bypass

Exploit Title: Online Hotel Reservation System 1.0 - Admin Authentication Bypass Exploit Author: Richard Jones Date: 2021-01-13 Vendor Homepage: https://www.sourcecodester.com/php/13492/online-hotel-reservation-system-phpmysqli.html Software Link:...

7.4AI score
Exploits0
Packet Storm
Packet Storm
added 2021/01/05 12:0 a.m.210 views

Baby Care System 1.0 Cross Site Scripting

Exploit Title: Baby Care System 1.0 - 'Post title' Stored XSS Exploit Author: Hardik Solanki Vendor Homepage: https://www.sourcecodester.com/php/14622/baby-care-system-phpmysqli-full-source-code.html Software Link:...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2020/12/23 12:0 a.m.199 views

Class Scheduling System 1.0 - Multiple Stored XSS

Exploit Title: Class Scheduling System 1.0 - Multiple Stored XSS Exploit Author: Aakash Madaan Godsky Date: 2020-12-22 Vendor Homepage: https://www.sourcecodester.com/php/5175/class-scheduling-system.html Software Link:...

7.4AI score
Exploits0
Packet Storm
Packet Storm
added 2020/12/17 12:0 a.m.309 views

Medical Center Portal Management System 1.0 SQL Injection

Exploit Title: Medical Center Portal Management System 1.0 - 'id' SQL Injection Exploit Author: Saeed Bala Ahmed r0b0tG4nG Date: 2020-12-10 Google Dork: N/A Vendor Homepage: https://www.sourcecodester.com/php/14594/medical-center-portal-management-system.html Software Link:...

0.5AI score
Exploits0
Packet Storm
Packet Storm
added 2020/12/17 12:0 a.m.286 views

Content Management System 1.0 SQL Injection

Exploit Title: Content Management System 1.0 - 'email' SQL Injection Exploit Author: Zhayi Zeo Date: 2020-12-14 Vendor Homepage: https://www.sourcecodester.com/php/14625/content-management-system-using-phpmysqli-source-code.html Software Link:...

0.3AI score
Exploits0
Exploit DB
Exploit DB
added 2020/12/17 12:0 a.m.210 views

Interview Management System 1.0 - Stored XSS in Add New Question

Exploit Title: Interview Management System 1.0 - Stored XSS in Add New Question Exploit Author: Saeed Bala Ahmed r0b0tG4nG Date: 2020-12-09 Google Dork: N/A Vendor Homepage: https://www.sourcecodester.com/php/14585/interview-management-system-phpmysqli-full-source-code.html Software Link:...

7.4AI score
Exploits0
Rows per page
Query Builder