CVE-2023-46581

SQL injection vulnerability in Inventory Management v.1.0 allows a local attacker to execute arbitrary code via the name, uname and email parameters in the registration.php component...

CVE-2023-46581

SQL injection vulnerability in Inventory Management v.1.0 allows a local attacker to execute arbitrary code via the name, uname and email parameters in the registration.php component...

Inventory Management System Security Vulnerability

Inventory Management System is an inventory management system by the individual developers of stemword. A security vulnerability in Inventory Management System version 1.0 exists that allows local attackers to execute arbitrary code via the name, uname, and email parameters in the Registration.ph...

CVE-2023-2364

A vulnerability, which was classified as problematic, was found in SourceCodester Resort Reservation System 1.0. Affected is an unknown function of the file registration.php. The manipulation of the argument fullname leads to cross site scripting. It is possible to launch the attack remotely. The...

Cross site scripting

A vulnerability, which was classified as problematic, was found in SourceCodester Resort Reservation System 1.0. Affected is an unknown function of the file registration.php. The manipulation of the argument fullname leads to cross site scripting. It is possible to launch the attack remotely. The...

CVE-2023-2364 SourceCodester Resort Reservation System registration.php cross site scripting

A vulnerability, which was classified as problematic, was found in SourceCodester Resort Reservation System 1.0. Affected is an unknown function of the file registration.php. The manipulation of the argument fullname leads to cross site scripting. It is possible to launch the attack remotely. The...

CVE-2023-2364

CVE-2023-2364 affects SourceCodester Resort Reservation System 1.0. The vulnerability is in an unknown function of registration.php, where manipulating the fullname parameter leads to cross-site scripting. It can be exploited remotely and public exploit information exists. Multiple sources quote ...

Out-of-bounds

A vulnerability was found in codeprojects Online Driving School. It has been rated as critical. Affected by this issue is some unknown functionality of the file /registration.php. The manipulation leads to unrestricted upload. The attack may be launched remotely. The exploit has been disclosed to...

CVE-2022-3129 codeprojects Online Driving School registration.php unrestricted upload

A vulnerability was found in codeprojects Online Driving School. It has been rated as critical. Affected by this issue is some unknown functionality of the file /registration.php. The manipulation leads to unrestricted upload. The attack may be launched remotely. The exploit has been disclosed to...

Online Driving School 代码问题漏洞

Online Driving School is an online driving school program by the individual developers at Codeprojects. Online Driving School suffers from a code issue vulnerability that originates in /registration.php, which allows an attacker to upload arbitrary files...

Sql injection

PHPGurukul Hospital Management System in PHP v4.0 has a SQL injection vulnerability in \hms\registration.php. Remote unauthenticated users can exploit the vulnerability to obtain database sensitive information...

CVE-2020-22171

PHPGurukul Hospital Management System v4.0 is affected by a SQL injection in hms\registration.php, exploitable by remote unauthenticated users to obtain sensitive DB information. Multiple sources corroborate the vulnerability in PHPGurukul Hospital Management System 4.0. Exploitation details are ...

Complaint Management System 4.2 Cross Site Scripting

Exploit Title: Complaint Management System 4.2 - Persistent Cross-Site Scripting Author: Besim ALTINOK Vendor Homepage: https://phpgurukul.com/ Software Link: https://phpgurukul.com/complaint-management-sytem/ Version: v4.2 Tested on: Xampp Credit: İsmail BOZKURT ------ Details: 1- Vulnerable cod...

searchteam.com XSS vulnerability

Open Bug Bounty ID: OBB-616481 Description| Value ---|--- Affected Website:| searchteam.com Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...

RedAxScript 1.1 SQL Injection

1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0 0 1 1 /' \ /'\ /\ \ /'\ 0 0 /, \ /\/\ \ \ \ \ ,/\ /\ \ 1 1 //\ \ /' \ /\ //\ Exploit database separated by exploit 0 0 // type local, remote, DoS, etc. 1 1 1 0 + Site : 1337day.com 0 1 + Support e-mail :...

CVE-2006-3821

Multiple cross-site scripting XSS vulnerabilities in ATutor 1.5.3 allow remote attackers to inject arbitrary web script or HTML via the 1 lang parameter in a indexlist.php and 2 year, 3 month, and 4 day parameter in b registration.php...

CVE-2006-3821

Multiple cross-site scripting XSS vulnerabilities in ATutor 1.5.3 allow remote attackers to inject arbitrary web script or HTML via the 1 lang parameter in a indexlist.php and 2 year, 3 month, and 4 day parameter in b registration.php...

CVE-2006-3052

The CVE-2006-3052 entry describes a Cross-site Scripting (XSS) vulnerability in Event Registration. The vulnerability arises from unsanitized user input in two parameters: (1) event_id to view-event-details.php and (2) select_events to event-registration.php, enabling injection of arbitrary scrip...

CVE-2005-4155

registration.PHP in ATutor 1.5.1 pl2 allows remote attackers to execute arbitrary SQL commands via an e-mail address that ends in a NULL character, which bypasses the PHP regular expression check. NOTE: it is possible that this is actually a bug in PHP code, in which case this should not be treat...