633 matches found
Cross site scripting
A vulnerability has been found in CodeAstro Online Railway Reservation System 1.0 and classified as problematic. This vulnerability affects unknown code of the file pass-profile.php. The manipulation of the argument First Name/Last Name/User Name leads to cross site scripting. The attack can be...
CVE-2024-0782 CodeAstro Online Railway Reservation System pass-profile.php cross site scripting
A vulnerability has been found in CodeAstro Online Railway Reservation System 1.0 and classified as problematic. This vulnerability affects unknown code of the file pass-profile.php. The manipulation of the argument First Name/Last Name/User Name leads to cross site scripting. The attack can be...
CVE-2024-0782 CodeAstro Online Railway Reservation System pass-profile.php cross site scripting
A vulnerability has been found in CodeAstro Online Railway Reservation System 1.0 and classified as problematic. This vulnerability affects unknown code of the file pass-profile.php. The manipulation of the argument First Name/Last Name/User Name leads to cross site scripting. The attack can be...
CVE-2023-7055 PHPGurukul Online Notes Sharing System Contact Information profile.php access control
A vulnerability classified as problematic has been found in PHPGurukul Online Notes Sharing System 1.0. Affected is an unknown function of the file /user/profile.php of the component Contact Information Handler. The manipulation of the argument mobilenumber leads to improper access controls. It i...
CVE-2023-7052
A vulnerability was found in PHPGurukul Online Notes Sharing System 1.0. It has been classified as problematic. This affects an unknown part of the file /user/profile.php. The manipulation of the argument name leads to cross-site request forgery. It is possible to initiate the attack remotely. Th...
Cross site request forgery (csrf)
A vulnerability was found in PHPGurukul Online Notes Sharing System 1.0. It has been classified as problematic. This affects an unknown part of the file /user/profile.php. The manipulation of the argument name leads to cross-site request forgery. It is possible to initiate the attack remotely. Th...
CVE-2023-7052 PHPGurukul Online Notes Sharing System profile.php cross-site request forgery
A vulnerability was found in PHPGurukul Online Notes Sharing System 1.0. It has been classified as problematic. This affects an unknown part of the file /user/profile.php. The manipulation of the argument name leads to cross-site request forgery. It is possible to initiate the attack remotely. Th...
CVE-2023-7052 PHPGurukul Online Notes Sharing System profile.php cross-site request forgery
A vulnerability was found in PHPGurukul Online Notes Sharing System 1.0. It has been classified as problematic. This affects an unknown part of the file /user/profile.php. The manipulation of the argument name leads to cross-site request forgery. It is possible to initiate the attack remotely. Th...
Teacher Subject Allocation Management System profile.php file cross-site scripting vulnerability
Teacher Subject Allocation Management System a teacher subject allocation management system. Teacher Subject Allocation Management System suffers from a cross-site scripting vulnerability that stems from the lack of effective filtering and escaping of user-supplied data in the adminname and email...
CVE-2023-47446
Pre-School Enrollment version 1.0 is vulnerable to Cross Site Scripting XSS on the profile.php page via fullname parameter...
PHPGurukul Pre-School Enrollment Cross-Site Scripting Vulnerability
PHPGurukul Pre-School Enrollment is a web-based preschool enrollment system from PHPGurukul, Inc. A cross-site scripting vulnerability exists in version 1.0 of PHPGurukul Pre-School Enrollment, which originates from an easy cross-site scripting attack via the fullname parameter in the profile.php...
CVE-2023-47446
Pre-School Enrollment version 1.0 is vulnerable to Cross Site Scripting XSS on the profile.php page via fullname parameter...
CVE-2023-47446
Pre-School Enrollment version 1.0 is vulnerable to Cross Site Scripting XSS on the profile.php page via fullname parameter...
CVE-2023-46026
Cross Site Scripting XSS vulnerability in profile.php in phpgurukul Teacher Subject Allocation Management System 1.0 allows attackers to run arbitrary code via the 'adminname' and 'email' parameters...
Cross site scripting
Cross Site Scripting XSS vulnerability in profile.php in phpgurukul Teacher Subject Allocation Management System 1.0 allows attackers to run arbitrary code via the 'adminname' and 'email' parameters...
phpgurukul Teacher Subject Allocation Management System 安全漏洞
Teacher Subject Allocation Management System a teacher subject allocation management system. Teacher Subject Allocation Management System suffers from a cross-site scripting vulnerability that stems from the lack of effective filtering and escaping of user-supplied data in the adminname and email...
Cross site scripting
A vulnerability classified as problematic was found in AlexanderLivanov FotosCMS2 up to 2.4.3. This vulnerability affects unknown code of the file profile.php of the component Cookie Handler. The manipulation of the argument username leads to cross site scripting. The attack can be initiated...
FotosCMS2 Cross-Site Scripting Vulnerability
FotosCMS2 is a content management system by the individual developer Alexander Livanov. A cross-site scripting vulnerability exists in FotosCMS2 2.4.3 and earlier versions, which stems from the parameter username in the file profile.php that causes cross-site scripting...
CVE-2023-31934
Cross Site Scripting vulnerability found in Rail Pass Management System v.1.0 allows a remote attacker to obtain sensitive information via the adminname parameter of admin-profile.php...
Cross site scripting
Cross Site Scripting vulnerability found in Rail Pass Management System v.1.0 allows a remote attacker to obtain sensitive information via the emial parameter of admin-profile.php...