CVE-2024-5437

A vulnerability was found in SourceCodester Simple Online Bidding System 1.0. It has been classified as problematic. Affected is the function savecategory of the file /admin/index.php?page=categories. The manipulation of the argument name leads to cross site scripting. It is possible to launch th...

CVE-2024-7800 SourceCodester Simple Online Bidding System ajax.php sql injection

A vulnerability classified as critical has been found in SourceCodester Simple Online Bidding System 1.0. This affects an unknown part of the file /simple-online-bidding-system/bidding/admin/ajax.php?action=deleteproduct. The manipulation of the argument id leads to sql injection. It is possible ...

CVE-2024-6417

A vulnerability was found in SourceCodester Simple Online Bidding System 1.0. It has been rated as critical. Affected by this issue is some unknown functionality of the file /admin/ajax.php?action=deleteuser. The manipulation of the argument id leads to sql injection. The attack may be launched...

PT-2024-37508 · Sourcecodester · Sourcecodester Simple Online Bidding System

Name of the Vulnerable Software and Affected Versions: SourceCodester Simple Online Bidding System version 1.0 Description: A critical issue affects the /admin/ajax.php?action=save settings file, where the manipulation of the img argument leads to unrestricted upload. This can be initiated...

PT-2024-36256 · Sourcecodester · Sourcecodester Simple Online Bidding System

Name of the Vulnerable Software and Affected Versions: SourceCodester Simple Online Bidding System version 1.0 Description: A problematic issue was found in the function save category of the file /admin/index.php?page=categories, where the manipulation of the argument name leads to cross-site...

CVE-2024-4932

A vulnerability, which was classified as critical, was found in SourceCodester Simple Online Bidding System 1.0. Affected is an unknown function of the file /simple-online-bidding-system/admin/index.php?page=manageuser. The manipulation of the argument id leads to sql injection. It is possible to...

CVE-2024-4933 SourceCodester Simple Online Bidding System sql injection

A vulnerability has been found in SourceCodester Simple Online Bidding System 1.0 and classified as critical. Affected by this vulnerability is an unknown functionality of the file /simple-online-bidding-system/admin/index.php?page=manageproduct. The manipulation of the argument id leads to sql...

CVE-2024-4932

CVE-2024-4932 : Concrete details show a SQL injection in SourceCodester Simple Online Bidding System 1.0. The vulnerability affects the file /simple-online-bidding-system/admin/index.php?page=manage_user where the id parameter manipulation leads to injection. It allows remote exploitation, and th...

CVE-2024-4932 SourceCodester Simple Online Bidding System sql injection

A vulnerability, which was classified as critical, was found in SourceCodester Simple Online Bidding System 1.0. Affected is an unknown function of the file /simple-online-bidding-system/admin/index.php?page=manageuser. The manipulation of the argument id leads to sql injection. It is possible to...

CVE-2024-4927

A vulnerability was found in SourceCodester Simple Online Bidding System 1.0. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /simple-online-bidding-system/admin/ajax.php?action=saveproduct. The manipulation leads to unrestricted upload. Th...

CVE-2024-4927 SourceCodester Simple Online Bidding System unrestricted upload

A vulnerability was found in SourceCodester Simple Online Bidding System 1.0. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /simple-online-bidding-system/admin/ajax.php?action=saveproduct. The manipulation leads to unrestricted upload. Th...

CVE-2024-4927

CVE-2024-4927 affects SourceCodester Simple Online Bidding System 1.0. The issue resides in an unknown functionality of the file /simple-online-bidding-system/admin/ajax.php?action=save_product, enabling unrestricted file uploads and allowing remote exploitation. Multiple sources note this as a c...

PT-2024-33471 · Sourcecodester · Sourcecodester Simple Online Bidding System

Name of the Vulnerable Software and Affected Versions: SourceCodester Simple Online Bidding System version 1.0 Description: A critical issue has been found in the system, affecting an unknown functionality of the file /simple-online-bidding-system/admin/index.php?page=manage product. The...

PT-2024-33440 · Sourcecodester · Sourcecodester Simple Online Bidding System

Name of the Vulnerable Software and Affected Versions: SourceCodester Simple Online Bidding System version 1.0 Description: A critical issue was found in the software, affecting the file /simple-online-bidding-system/index.php?page=view prod. The manipulation of the id argument leads to SQL...

CVE-2024-2077

A vulnerability classified as critical has been found in SourceCodester Simple Online Bidding System 1.0. This affects an unknown part of the file index.php. The manipulation of the argument categoryid leads to sql injection. It is possible to initiate the attack remotely. The exploit has been...