4 matches found
CVE-2023-33584
Sourcecodester Enrollment System Project V1.0 is vulnerable to SQL Injection SQLI attacks, which allow an attacker to manipulate the SQL queries executed by the application. The application fails to properly validate user-supplied input in the username and password fields during the login process...
CVE-2023-33584
Sourcecodester Enrollment System Project V1.0 is vulnerable to SQL Injection SQLI attacks, which allow an attacker to manipulate the SQL queries executed by the application. The application fails to properly validate user-supplied input in the username and password fields during the login process...
CVE-2023-33584
Enrollment System Project V1.0 from Sourcecodester is vulnerable to SQL Injection in the login flow (username/password inputs) that can bypass authentication and gain unauthorized access. Root cause: improper validation/sanitization of input in login queries. Public exploits exist (e.g., Exploit-...
CVE-2021-40577
A Stored Cross Site Scripting XSS vulnerability exists in Sourcecodester Online Enrollment Management System in PHP and PayPal Free Source Code 1.0 in the Add-Users page via the Name parameter...