18 matches found
CVE-2024-10805 code-projects University Event Management System doedit.php sql injection
A vulnerability was found in code-projects University Event Management System 1.0. It has been classified as critical. This affects an unknown part of the file doedit.php. The manipulation of the argument id leads to sql injection. It is possible to initiate the attack remotely. The exploit has...
CVE-2024-10805
The connected documents confirm CVE-2024-10805 affects code-projects University Event Management System 1.0, specifically the doedit.php file’s id parameter. The vulnerability is an SQL injection that can be triggered remotely, with public exploitation noted. Several sources consistently describe...
CVE-2024-10752
A vulnerability was found in Codezips Pet Shop Management System 1.0. It has been classified as critical. This affects an unknown part of the file /productsadd.php. The manipulation of the argument id/name leads to sql injection. It is possible to initiate the attack remotely. The exploit has bee...
CVE-2024-10700 code-projects University Event Management System submit.php sql injection
A vulnerability was found in code-projects University Event Management System 1.0. It has been declared as critical. This vulnerability affects unknown code of the file submit.php. The manipulation of the argument name/email/title/Year/gender/fromdate/todate/people leads to sql injection. The...
CVE-2024-10433
The CVE-2024-10433 issue affects Project Worlds Simple Web-Based Chat Application 1.0. The vulnerability is a cross-site scripting flaw in the /index.php page, triggered by manipulating the Name/Comment parameter. It is described as exploitable remotely, with public disclosure of exploits. The av...
CVE-2024-10426
A vulnerability was found in Codezips Pet Shop Management System 1.0. It has been classified as critical. This affects an unknown part of the file /animalsadd.php. The manipulation of the argument id leads to sql injection. It is possible to initiate the attack remotely. The exploit has been...
CVE-2024-10426 Codezips Pet Shop Management System animalsadd.php sql injection
A vulnerability was found in Codezips Pet Shop Management System 1.0. It has been classified as critical. This affects an unknown part of the file /animalsadd.php. The manipulation of the argument id leads to sql injection. It is possible to initiate the attack remotely. The exploit has been...
CVE-2024-10414 PHPGurukul Vehicle Record System edit-brand.php cross site scripting
A vulnerability, which was classified as problematic, was found in PHPGurukul Vehicle Record System 1.0. This affects an unknown part of the file /admin/edit-brand.php. The manipulation of the argument Brand Name leads to cross site scripting. It is possible to initiate the attack remotely. The...
CVE-2024-10335
A vulnerability was found in SourceCodester Garbage Collection Management System 1.0. It has been declared as critical. This vulnerability affects unknown code of the file login.php. The manipulation of the argument username/password leads to sql injection. The attack can be initiated remotely. T...
CVE-2024-10335
CVE-2024-10335 affects SourceCodester Garbage Collection Management System 1.0. The vulnerability resides in the login.php code, where manipulation of the username and potentially password parameters leads to an SQL injection. Exploitation is described as remote, with public disclosure of the exp...
CVE-2024-10198
A vulnerability was found in code-projects Pharmacy Management System 1.0. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the file /managecustomer.php of the component Manage Customer Page. The manipulation of the argument suppliersname/address...
CVE-2024-10199
A vulnerability was found in code-projects Pharmacy Management System 1.0. It has been rated as problematic. Affected by this issue is some unknown functionality of the file /managemedicine.php of the component Manage Medicines Page. The manipulation of the argument...
CVE-2024-10199 code-projects Pharmacy Management System Manage Medicines Page manage_medicine.php cross site scripting
A vulnerability was found in code-projects Pharmacy Management System 1.0. It has been rated as problematic. Affected by this issue is some unknown functionality of the file /managemedicine.php of the component Manage Medicines Page. The manipulation of the argument...
CVE-2024-10199
The CVE-2024-10199 entry concerns code-projects Pharmacy Management System 1.0 where the /manage_medicine.php page is vulnerable to cross-site scripting through manipulated parameters name/address/doctor_address/suppliers_name. The issue can be exploited remotely, and public exploit details exist...
CVE-2024-9805
CVE-2024-9805 affects code-projects Blood Bank System 1.0, specifically the web endpoint /admin/campsdetails.php. The vulnerability arises from manipulating the parameter hospital/address/city/contact, which enables cross-site scripting. The issue may be exploited remotely and, per multiple sourc...
CVE-2024-9429 code-projects Restaurant Reservation System filter2.php sql injection
A vulnerability has been found in code-projects Restaurant Reservation System 1.0 and classified as critical. Affected by this vulnerability is an unknown functionality of the file /filter2.php. The manipulation of the argument from/to leads to sql injection. The attack can be launched remotely...
CVE-2024-9282 bg5sbk MiniCMS page-edit.php cross-site request forgery
A vulnerability was found in bg5sbk MiniCMS 1.11. It has been classified as problematic. Affected is an unknown function of the file page-edit.php. The manipulation leads to cross-site request forgery. It is possible to launch the attack remotely. The exploit has been disclosed to the public and...
CVE-2024-9085
A vulnerability was found in code-projects Restaurant Reservation System 1.0. It has been rated as critical. This issue affects some unknown processing of the file index.php. The manipulation of the argument date leads to sql injection. The attack may be initiated remotely. The exploit has been...