Sql injection

A vulnerability classified as critical was found in CXBSoft Url-shorting up to 1.3.1. This vulnerability affects unknown code of the file /pages/shorttolong.php of the component HTTP POST Request Handler. The manipulation of the argument shorturl leads to sql injection. The exploit has been...

Sql injection

A vulnerability classified as critical has been found in CXBSoft Url-shorting up to 1.3.1. This affects an unknown part of the file /pages/longsshort.php of the component HTTP POST Request Handler. The manipulation of the argument longurl leads to sql injection. The exploit has been disclosed to...

CVE-2024-0526 CXBSoft Url-shorting HTTP POST Request short_to_long.php sql injection

A vulnerability classified as critical was found in CXBSoft Url-shorting up to 1.3.1. This vulnerability affects unknown code of the file /pages/shorttolong.php of the component HTTP POST Request Handler. The manipulation of the argument shorturl leads to sql injection. The exploit has been...

CVE-2024-0526 CXBSoft Url-shorting HTTP POST Request short_to_long.php sql injection

A vulnerability classified as critical was found in CXBSoft Url-shorting up to 1.3.1. This vulnerability affects unknown code of the file /pages/shorttolong.php of the component HTTP POST Request Handler. The manipulation of the argument shorturl leads to sql injection. The exploit has been...

CVE-2024-0522

A vulnerability was found in Allegro RomPager 4.01. It has been classified as problematic. Affected is an unknown function of the file usertable.htm?action=delete of the component HTTP POST Request Handler. The manipulation of the argument username leads to cross-site request forgery. It is...

CVE-2024-0522

CVE-2024-0522 originates from Allegro RomPager 4.01, where CSRF can be triggered via the HTTP POST Request Handler in the file usertable.htm?action=delete , allowing remote exploitation. The underlying issue is a manipulation of the username argument that enables cross-site request forgery. Affec...

CVE-2024-0496

A vulnerability was found in Kashipara Billing Software 1.0 and classified as critical. This issue affects some unknown processing of the file itemlistedit.php of the component HTTP POST Request Handler. The manipulation of the argument id leads to sql injection. The attack may be initiated...

Sql injection

A vulnerability has been found in Kashipara Billing Software 1.0 and classified as critical. This vulnerability affects unknown code of the file partysubmit.php of the component HTTP POST Request Handler. The manipulation of the argument partyname leads to sql injection. The attack can be initiat...

Sql injection

A vulnerability was found in Kashipara Billing Software 1.0 and classified as critical. This issue affects some unknown processing of the file itemlistedit.php of the component HTTP POST Request Handler. The manipulation of the argument id leads to sql injection. The attack may be initiated...

CVE-2024-0495

The CVE-2024-0495 entries indicate a SQL injection in Kashipara Billing Software 1.0, caused by unsanitized party_name input in party_submit.php (HTTP POST Handler). It is remotely exploitable with publicly disclosed exploit information. Affected component/file: party_submit.php; vulnerable input...

CVE-2024-0494

A vulnerability, which was classified as critical, was found in Kashipara Billing Software 1.0. This affects an unknown part of the file materialbill.php of the component HTTP POST Request Handler. The manipulation of the argument itemtypeid leads to sql injection. It is possible to initiate the...

Sql injection

A vulnerability, which was classified as critical, has been found in Kashipara Billing Software 1.0. Affected by this issue is some unknown functionality of the file submitdeliverylist.php of the component HTTP POST Request Handler. The manipulation of the argument customerdetails leads to sql...

Sql injection

A vulnerability, which was classified as critical, was found in Kashipara Billing Software 1.0. This affects an unknown part of the file materialbill.php of the component HTTP POST Request Handler. The manipulation of the argument itemtypeid leads to sql injection. It is possible to initiate the...

CVE-2024-0494

CVE-2024-0494 affects Kashipara Billing Software 1.0, specifically the HTTP POST Request Handler’s material_bill.php. The vulnerability arises from improper handling of the itemtypeid in the POST data, enabling SQL injection that can be triggered remotely. Public exploit information has been disc...

CVE-2024-0492

A vulnerability classified as critical was found in Kashipara Billing Software 1.0. Affected by this vulnerability is an unknown functionality of the file buyerdetailsubmit.php of the component HTTP POST Request Handler. The manipulation of the argument gstnno leads to sql injection. The attack c...

CVE-2024-0492

CVE-2024-0492 affects Kashipara Billing Software 1.0. The vulnerability is a SQL injection in the GSTN_NO parameter of Buyer_detail_submit.php (HTTP POST Request Handler) that can be triggered remotely. Multiple sources corroborate a critical severity (NVD CVSS 3.1 base score 9.8; other CVSS vect...

CVE-2024-0483

A vulnerability classified as critical was found in Taokeyun up to 1.0.5. This vulnerability affects the function index of the file application/index/controller/app/Task.php of the component HTTP POST Request Handler. The manipulation of the argument cid leads to sql injection. The attack can be...

Sql injection

A vulnerability classified as critical has been found in Taokeyun up to 1.0.5. This affects the function index of the file application/index/controller/app/Video.php of the component HTTP POST Request Handler. The manipulation of the argument cid leads to sql injection. It is possible to initiate...

CVE-2024-0483

Taokeyun up to version 1.0.5 is affected by a SQL injection in the HTTP POST Request Handler, specifically the Task.php index function where the cid argument is manipulated. The vulnerability can be exploited remotely and, according to sources, has been publicly disclosed. The issue’s impact is d...

CVE-2024-0483 Taokeyun HTTP POST Request Task.php index sql injection

A vulnerability classified as critical was found in Taokeyun up to 1.0.5. This vulnerability affects the function index of the file application/index/controller/app/Task.php of the component HTTP POST Request Handler. The manipulation of the argument cid leads to sql injection. The attack can be...