43 matches found
CVE-2024-5120 SourceCodester Event Registration System sql injection
A vulnerability was found in SourceCodester Event Registration System 1.0. It has been classified as critical. Affected is an unknown function of the file /registrar/?page=registration. The manipulation of the argument e leads to sql injection. It is possible to launch the attack remotely. The...
CVE-2024-5120 SourceCodester Event Registration System sql injection
A vulnerability was found in SourceCodester Event Registration System 1.0. It has been classified as critical. Affected is an unknown function of the file /registrar/?page=registration. The manipulation of the argument e leads to sql injection. It is possible to launch the attack remotely. The...
CVE-2024-5119 SourceCodester Event Registration System sql injection
A vulnerability was found in SourceCodester Event Registration System 1.0 and classified as critical. This issue affects some unknown processing of the file /classes/Master.php?f=loadregistration. The manipulation of the argument lastid/eventid leads to sql injection. The attack may be initiated...
CVE-2024-5119
SourceCodester Event Registration System 1.0 contains a SQL injection in /classes/Master.php?f=load_registration where the last_id/event_id parameter is manipulated. The issue is triggered by unsafely handling user input, allowing remote exploitation; multiple sources (NVD and CVE listings) confi...
CVE-2024-5119 SourceCodester Event Registration System sql injection
A vulnerability was found in SourceCodester Event Registration System 1.0 and classified as critical. This issue affects some unknown processing of the file /classes/Master.php?f=loadregistration. The manipulation of the argument lastid/eventid leads to sql injection. The attack may be initiated...
CVE-2024-5117
A vulnerability, which was classified as critical, was found in SourceCodester Event Registration System 1.0. This affects an unknown part of the file portal.php. The manipulation of the argument username/password leads to sql injection. It is possible to initiate the attack remotely. The exploit...
CVE-2024-5118 SourceCodester Event Registration System login.php sql injection
A vulnerability has been found in SourceCodester Event Registration System 1.0 and classified as critical. This vulnerability affects unknown code of the file /admin/login.php. The manipulation of the argument username/password leads to sql injection. The attack can be initiated remotely. The...
CVE-2024-5118 SourceCodester Event Registration System login.php sql injection
A vulnerability has been found in SourceCodester Event Registration System 1.0 and classified as critical. This vulnerability affects unknown code of the file /admin/login.php. The manipulation of the argument username/password leads to sql injection. The attack can be initiated remotely. The...
CVE-2024-5117 SourceCodester Event Registration System portal.php sql injection
A vulnerability, which was classified as critical, was found in SourceCodester Event Registration System 1.0. This affects an unknown part of the file portal.php. The manipulation of the argument username/password leads to sql injection. It is possible to initiate the attack remotely. The exploit...
CVE-2024-5117
CVE-2024-5117 affects SourceCodester Event Registration System 1.0, with an SQL Injection in portal.php triggered by manipulating username/password. Root cause: unsanitized input in portal.php allows remote attacker to exploit SQL queries. Impact: high (C, I, A implications in CVSS), potential re...
PT-2024-34562 · Sourcecodester · Sourcecodester Event Registration System
Name of the Vulnerable Software and Affected Versions: SourceCodester Event Registration System version 1.0 Description: A vulnerability was found in the system, affecting an unknown functionality of the file "/registrar/?page=registration". The manipulation of the argument e leads to cross site...
PT-2024-34557 · Sourcecodester · Sourcecodester Event Registration System
Name of the Vulnerable Software and Affected Versions: SourceCodester Event Registration System version 1.0 Description: A critical issue affects the processing of the file /classes/Master.php?f=load registration, where the manipulation of the argument last id/event id leads to sql injection. The...
CVE-2022-4233
A vulnerability has been found in SourceCodester Event Registration System 1.0 and classified as problematic. Affected by this vulnerability is an unknown functionality of the file /event/admin/?page=user/list. The manipulation of the argument First Name/Last Name leads to cross site scripting. T...
CVE-2022-4232
A vulnerability, which was classified as critical, was found in SourceCodester Event Registration System 1.0. Affected is an unknown function. The manipulation of the argument cmd leads to unrestricted upload. It is possible to launch the attack remotely. VDB-214590 is the identifier assigned to...
Cross site scripting
A vulnerability has been found in SourceCodester Event Registration System 1.0 and classified as problematic. Affected by this vulnerability is an unknown functionality of the file /event/admin/?page=user/list. The manipulation of the argument First Name/Last Name leads to cross site scripting. T...
CVE-2022-4232 SourceCodester Event Registration System unrestricted upload
A vulnerability, which was classified as critical, was found in SourceCodester Event Registration System 1.0. Affected is an unknown function. The manipulation of the argument cmd leads to unrestricted upload. It is possible to launch the attack remotely. VDB-214590 is the identifier assigned to...
CVE-2022-4233 SourceCodester Event Registration System cross site scripting
A vulnerability has been found in SourceCodester Event Registration System 1.0 and classified as problematic. Affected by this vulnerability is an unknown functionality of the file /event/admin/?page=user/list. The manipulation of the argument First Name/Last Name leads to cross site scripting. T...
PT-2022-26365 · Sourcecodester · Sourcecodester Event Registration System
Name of the Vulnerable Software and Affected Versions: SourceCodester Event Registration System version 1.0 Description: A critical issue was found, allowing for unrestricted upload through the manipulation of the cmd argument. This can be exploited remotely. Recommendations: For version 1.0,...
CVE-2022-44830
Sourcecodester Event Registration App v1.0 was discovered to contain multiple CSV injection vulnerabilities via the First Name, Contact and Remarks fields. These vulnerabilities allow attackers to execute arbitrary code via a crafted excel file...
Input validation
Sourcecodester Event Registration App v1.0 was discovered to contain multiple CSV injection vulnerabilities via the First Name, Contact and Remarks fields. These vulnerabilities allow attackers to execute arbitrary code via a crafted excel file...