CVE-2024-0482

Summary of findings (CVE-2024-0482): Taokeyun up to 1.0.5 is affected by a vulnerability in the HTTP POST Request Handler, specifically the function index within Video.php. The issue arises from manipulating the parameter cid , leading to an SQL injection. The vulnerability is exploitable remotel...

CVE-2024-0481

Taokeyun up to version 1.0.5 contains a SQL injection in the shopGoods function (application/index/controller/app/store/Goods.php) triggered via the keyword parameter in HTTP POST requests. The vulnerability is exploitable remotely, and public exploit details have been disclosed. The CVE entry no...

Sql injection

A vulnerability was found in Taokeyun up to 1.0.5. It has been declared as critical. Affected by this vulnerability is the function index of the file application/index/controller/m/Drs.php of the component HTTP POST Request Handler. The manipulation of the argument cid leads to sql injection. The...

CVE-2024-0480 Taokeyun HTTP POST Request Drs.php index sql injection

A vulnerability was found in Taokeyun up to 1.0.5. It has been declared as critical. Affected by this vulnerability is the function index of the file application/index/controller/m/Drs.php of the component HTTP POST Request Handler. The manipulation of the argument cid leads to sql injection. The...

CVE-2024-0480

Taokeyun up to v1.0.5 suffers SQL injection in the HTTP POST Request Handler, specifically in the index function of application/index/controller/m/Drs.php via the cid parameter. The vulnerability is remotely exploitable; exploitation details are documented in public writeups (e.g., PoC/traffic pa...

PT-2024-15600 · Taokeyun · Taokeyun

Name of the Vulnerable Software and Affected Versions: Taokeyun versions up to 1.0.5 Description: A critical issue was found in the HTTP POST Request Handler component, specifically affecting the function index of the file application/index/controller/app/Task.php. The manipulation of the cid...

CVE-2024-0464

A vulnerability classified as critical has been found in code-projects Online Faculty Clearance 1.0. This affects an unknown part of the file deletefaculty.php of the component HTTP GET Request Handler. The manipulation of the argument id leads to sql injection. It is possible to initiate the...

Sql injection

A vulnerability classified as critical has been found in code-projects Online Faculty Clearance 1.0. This affects an unknown part of the file deletefaculty.php of the component HTTP GET Request Handler. The manipulation of the argument id leads to sql injection. It is possible to initiate the...

CVE-2024-0462

A vulnerability was found in code-projects Online Faculty Clearance 1.0. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /production/designeeviewstatus.php of the component HTTP POST Request Handler. The manipulation of the argument haydi...

CVE-2024-0463

A vulnerability was found in code-projects Online Faculty Clearance 1.0. It has been rated as critical. Affected by this issue is some unknown functionality of the file /production/adminviewinfo.php of the component HTTP POST Request Handler. The manipulation of the argument haydi leads to sql...

Sql injection

A vulnerability was found in code-projects Online Faculty Clearance 1.0. It has been rated as critical. Affected by this issue is some unknown functionality of the file /production/adminviewinfo.php of the component HTTP POST Request Handler. The manipulation of the argument haydi leads to sql...

CVE-2024-0463

CVE-2024-0463 affects code-projects Online Faculty Clearance 1.0. The vulnerability is a SQL injection in the HTTP POST Request Handler for the file /production/admin_view_info.php, triggered by manipulating the haydi parameter. Attackers can exploit remotely, and the exploit has been disclosed p...

Sql injection

A vulnerability was found in code-projects Online Faculty Clearance 1.0. It has been classified as critical. Affected is an unknown function of the file deactivate.php of the component HTTP POST Request Handler. The manipulation of the argument haydi leads to sql injection. It is possible to laun...

Totolink T6 Buffer Overflow Vulnerability

TOTOLINK T6 is a wireless dual-band router from China's Gion Electronics TOTOLINK. A buffer overflow vulnerability exists in Totolink T6 version 4.1.9cu.5241B20210923, which originates from the component HTTP POST Request Handler in the file /cgi-bin/cstecgi.cgi that fails to correctly validate t...

Design/Logic Flaw

A vulnerability was found in Jasper httpdx up to 1.5.4 and classified as problematic. This issue affects some unknown processing of the component HTTP POST Request Handler. The manipulation leads to denial of service. The attack may be initiated remotely. The exploit has been disclosed to the...

CVE-2024-0418

A vulnerability has been found in iSharer and upRedSun File Sharing Wizard up to 1.5.0 and classified as problematic. This vulnerability affects unknown code of the component GET Request Handler. The manipulation leads to denial of service. The attack can be initiated remotely. The exploit has be...

CVE-2024-0418

A vulnerability has been found in iSharer and upRedSun File Sharing Wizard up to 1.5.0 and classified as problematic. This vulnerability affects unknown code of the component GET Request Handler. The manipulation leads to denial of service. The attack can be initiated remotely. The exploit has be...

Design/Logic Flaw

A vulnerability has been found in iSharer and upRedSun File Sharing Wizard up to 1.5.0 and classified as problematic. This vulnerability affects unknown code of the component GET Request Handler. The manipulation leads to denial of service. The attack can be initiated remotely. The exploit has be...

CVE-2024-0418

CVE-2024-0418 affects iSharer and upRedSun File Sharing Wizard up to v1.5.0, with the vulnerable element identified as the GET Request Handler. The available descriptions state that remote manipulation can cause a denial of service and that the exploit has been disclosed publicly. The records do ...

CVE-2024-0418 iSharer and upRedSun File Sharing Wizard GET Request denial of service

A vulnerability has been found in iSharer and upRedSun File Sharing Wizard up to 1.5.0 and classified as problematic. This vulnerability affects unknown code of the component GET Request Handler. The manipulation leads to denial of service. The attack can be initiated remotely. The exploit has be...