7 matches found
CVE-2024-12232
A vulnerability has been found in code-projects Simple CRUD Functionality 1.0 and classified as problematic. This vulnerability affects unknown code of the file /index.php. The manipulation of the argument newtitle/newdescr leads to cross site scripting. The attack can be initiated remotely. The...
CVE-2024-12232
CVE-2024-12232 affects Code-Projects Simple CRUD Functionality 1.0. The vulnerability occurs in an unknown code path of /index.php, where manipulation of the parameters newtitle and newdescr leads to cross-site scripting (XSS) . It is described as exploitable remotely with the exploit publicly di...
CVE-2024-12232 code-projects Simple CRUD Functionality index.php cross site scripting
A vulnerability has been found in code-projects Simple CRUD Functionality 1.0 and classified as problematic. This vulnerability affects unknown code of the file /index.php. The manipulation of the argument newtitle/newdescr leads to cross site scripting. The attack can be initiated remotely. The...
CVE-2023-48078
SQL Injection vulnerability in add.php in Simple CRUD Functionality v1.0 allows attackers to run arbitrary SQL commands via the 'title' parameter...
CVE-2023-48078
SQL Injection vulnerability in add.php in Simple CRUD Functionality v1.0 allows attackers to run arbitrary SQL commands via the 'title' parameter...
CVE-2023-48078
CVE-2023-48078 affects Simple CRUD Functionality v1.0. The vulnerability is an SQL injection in the add.php handler, exploitable via the title parameter, allowing arbitrary SQL execution. The reported CVSSv3.1 score is 9.8 (CRITICAL) with network attack vector, no authentication, and all CIA impa...
CVE-2023-48078
SQL Injection vulnerability in add.php in Simple CRUD Functionality v1.0 allows attackers to run arbitrary SQL commands via the 'title' parameter...