Lucene search
K

43 matches found

Vulnrichment
Vulnrichment
added 2024/05/20 6:0 a.m.13 views

CVE-2024-5120 SourceCodester Event Registration System sql injection

A vulnerability was found in SourceCodester Event Registration System 1.0. It has been classified as critical. Affected is an unknown function of the file /registrar/?page=registration. The manipulation of the argument e leads to sql injection. It is possible to launch the attack remotely. The...

6.5CVSS7.4AI score0.00579EPSS
Exploits1References4
Cvelist
Cvelist
added 2024/05/20 6:0 a.m.23 views

CVE-2024-5120 SourceCodester Event Registration System sql injection

A vulnerability was found in SourceCodester Event Registration System 1.0. It has been classified as critical. Affected is an unknown function of the file /registrar/?page=registration. The manipulation of the argument e leads to sql injection. It is possible to launch the attack remotely. The...

6.5CVSS6.8AI score0.00579EPSS
Exploits1References4
Cvelist
Cvelist
added 2024/05/20 5:31 a.m.26 views

CVE-2024-5119 SourceCodester Event Registration System sql injection

A vulnerability was found in SourceCodester Event Registration System 1.0 and classified as critical. This issue affects some unknown processing of the file /classes/Master.php?f=loadregistration. The manipulation of the argument lastid/eventid leads to sql injection. The attack may be initiated...

6.5CVSS6.8AI score0.00579EPSS
Exploits1References4
CVE
CVE
added 2024/05/20 5:31 a.m.59 views

CVE-2024-5119

SourceCodester Event Registration System 1.0 contains a SQL injection in /classes/Master.php?f=load_registration where the last_id/event_id parameter is manipulated. The issue is triggered by unsafely handling user input, allowing remote exploitation; multiple sources (NVD and CVE listings) confi...

9.8CVSS7.3AI score0.00579EPSS
Exploits1References4Affected Software1
Vulnrichment
Vulnrichment
added 2024/05/20 5:31 a.m.19 views

CVE-2024-5119 SourceCodester Event Registration System sql injection

A vulnerability was found in SourceCodester Event Registration System 1.0 and classified as critical. This issue affects some unknown processing of the file /classes/Master.php?f=loadregistration. The manipulation of the argument lastid/eventid leads to sql injection. The attack may be initiated...

6.5CVSS7.4AI score0.00579EPSS
Exploits1References4
NVD
NVD
added 2024/05/20 5:15 a.m.18 views

CVE-2024-5117

A vulnerability, which was classified as critical, was found in SourceCodester Event Registration System 1.0. This affects an unknown part of the file portal.php. The manipulation of the argument username/password leads to sql injection. It is possible to initiate the attack remotely. The exploit...

9.8CVSS7.5AI score0.00682EPSS
Exploits1References3
Vulnrichment
Vulnrichment
added 2024/05/20 5:0 a.m.15 views

CVE-2024-5118 SourceCodester Event Registration System login.php sql injection

A vulnerability has been found in SourceCodester Event Registration System 1.0 and classified as critical. This vulnerability affects unknown code of the file /admin/login.php. The manipulation of the argument username/password leads to sql injection. The attack can be initiated remotely. The...

7.5CVSS7.6AI score0.00746EPSS
Exploits1References4
Cvelist
Cvelist
added 2024/05/20 5:0 a.m.24 views

CVE-2024-5118 SourceCodester Event Registration System login.php sql injection

A vulnerability has been found in SourceCodester Event Registration System 1.0 and classified as critical. This vulnerability affects unknown code of the file /admin/login.php. The manipulation of the argument username/password leads to sql injection. The attack can be initiated remotely. The...

7.5CVSS7.5AI score0.00746EPSS
Exploits1References4
Vulnrichment
Vulnrichment
added 2024/05/20 4:31 a.m.12 views

CVE-2024-5117 SourceCodester Event Registration System portal.php sql injection

A vulnerability, which was classified as critical, was found in SourceCodester Event Registration System 1.0. This affects an unknown part of the file portal.php. The manipulation of the argument username/password leads to sql injection. It is possible to initiate the attack remotely. The exploit...

7.5CVSS7.3AI score0.00682EPSS
Exploits1References3
CVE
CVE
added 2024/05/20 4:31 a.m.60 views

CVE-2024-5117

CVE-2024-5117 affects SourceCodester Event Registration System 1.0, with an SQL Injection in portal.php triggered by manipulating username/password. Root cause: unsanitized input in portal.php allows remote attacker to exploit SQL queries. Impact: high (C, I, A implications in CVSS), potential re...

9.8CVSS7.3AI score0.00682EPSS
Exploits1References3Affected Software1
Positive Technologies
Positive Technologies
added 2024/05/20 12:0 a.m.6 views

PT-2024-34562 · Sourcecodester · Sourcecodester Event Registration System

Name of the Vulnerable Software and Affected Versions: SourceCodester Event Registration System version 1.0 Description: A vulnerability was found in the system, affecting an unknown functionality of the file "/registrar/?page=registration". The manipulation of the argument e leads to cross site...

6.1CVSS4.1AI score0.00428EPSS
Exploits1References7
Positive Technologies
Positive Technologies
added 2024/05/20 12:0 a.m.5 views

PT-2024-34557 · Sourcecodester · Sourcecodester Event Registration System

Name of the Vulnerable Software and Affected Versions: SourceCodester Event Registration System version 1.0 Description: A critical issue affects the processing of the file /classes/Master.php?f=load registration, where the manipulation of the argument last id/event id leads to sql injection. The...

9.8CVSS7.2AI score0.00579EPSS
Exploits1References7
NVD
NVD
added 2022/11/30 12:15 p.m.22 views

CVE-2022-4233

A vulnerability has been found in SourceCodester Event Registration System 1.0 and classified as problematic. Affected by this vulnerability is an unknown functionality of the file /event/admin/?page=user/list. The manipulation of the argument First Name/Last Name leads to cross site scripting. T...

6.1CVSS0.00335EPSS
Exploits0References1
NVD
NVD
added 2022/11/30 12:15 p.m.14 views

CVE-2022-4232

A vulnerability, which was classified as critical, was found in SourceCodester Event Registration System 1.0. Affected is an unknown function. The manipulation of the argument cmd leads to unrestricted upload. It is possible to launch the attack remotely. VDB-214590 is the identifier assigned to...

9.8CVSS0.00439EPSS
Exploits0References1
Prion
Prion
added 2022/11/30 12:15 p.m.25 views

Cross site scripting

A vulnerability has been found in SourceCodester Event Registration System 1.0 and classified as problematic. Affected by this vulnerability is an unknown functionality of the file /event/admin/?page=user/list. The manipulation of the argument First Name/Last Name leads to cross site scripting. T...

5.8CVSS6AI score0.00335EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2022/11/30 12:0 a.m.23 views

CVE-2022-4232 SourceCodester Event Registration System unrestricted upload

A vulnerability, which was classified as critical, was found in SourceCodester Event Registration System 1.0. Affected is an unknown function. The manipulation of the argument cmd leads to unrestricted upload. It is possible to launch the attack remotely. VDB-214590 is the identifier assigned to...

4.7CVSS9.8AI score0.00439EPSS
Exploits0References1
Cvelist
Cvelist
added 2022/11/30 12:0 a.m.28 views

CVE-2022-4233 SourceCodester Event Registration System cross site scripting

A vulnerability has been found in SourceCodester Event Registration System 1.0 and classified as problematic. Affected by this vulnerability is an unknown functionality of the file /event/admin/?page=user/list. The manipulation of the argument First Name/Last Name leads to cross site scripting. T...

2.4CVSS6.2AI score0.00335EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2022/11/30 12:0 a.m.5 views

PT-2022-26365 · Sourcecodester · Sourcecodester Event Registration System

Name of the Vulnerable Software and Affected Versions: SourceCodester Event Registration System version 1.0 Description: A critical issue was found, allowing for unrestricted upload through the manipulation of the cmd argument. This can be exploited remotely. Recommendations: For version 1.0,...

9.8CVSS9.2AI score0.00439EPSS
Exploits0References6
NVD
NVD
added 2022/11/21 6:15 p.m.19 views

CVE-2022-44830

Sourcecodester Event Registration App v1.0 was discovered to contain multiple CSV injection vulnerabilities via the First Name, Contact and Remarks fields. These vulnerabilities allow attackers to execute arbitrary code via a crafted excel file...

7.8CVSS0.00558EPSS
Exploits1References1
Prion
Prion
added 2022/11/21 6:15 p.m.16 views

Input validation

Sourcecodester Event Registration App v1.0 was discovered to contain multiple CSV injection vulnerabilities via the First Name, Contact and Remarks fields. These vulnerabilities allow attackers to execute arbitrary code via a crafted excel file...

4.4CVSS8AI score0.00558EPSS
Exploits1References1Affected Software1
Rows per page
Query Builder