8 matches found
EUVD-2024-49859
Malicious code in bioql PyPI...
CVE-2024-9319
A vulnerability, which was classified as critical, was found in SourceCodester Online Timesheet App 1.0. This affects an unknown part of the file /endpoint/delete-timesheet.php. The manipulation of the argument timesheet leads to sql injection. It is possible to initiate the attack remotely. The...
CVE-2024-9320
A vulnerability has been found in SourceCodester Online Timesheet App 1.0 and classified as problematic. This vulnerability affects unknown code of the file /endpoint/add-timesheet.php of the component Add Timesheet Form. The manipulation of the argument day/task leads to cross site scripting. Th...
CVE-2024-9320 SourceCodester Online Timesheet App Add Timesheet Form add-timesheet.php cross site scripting
A vulnerability has been found in SourceCodester Online Timesheet App 1.0 and classified as problematic. This vulnerability affects unknown code of the file /endpoint/add-timesheet.php of the component Add Timesheet Form. The manipulation of the argument day/task leads to cross site scripting. Th...
CVE-2024-9320
SourceCodester Online Timesheet App 1.0 contains a cross-site scripting (XSS) vulnerability in the Add Timesheet Form component, due to manipulation of the day/task parameter in /endpoint/add-timesheet.php. The issue can be triggered remotely; public exploit details are referenced in multiple sou...
CVE-2024-9319 SourceCodester Online Timesheet App delete-timesheet.php sql injection
A vulnerability, which was classified as critical, was found in SourceCodester Online Timesheet App 1.0. This affects an unknown part of the file /endpoint/delete-timesheet.php. The manipulation of the argument timesheet leads to sql injection. It is possible to initiate the attack remotely. The...
CVE-2024-9319 SourceCodester Online Timesheet App delete-timesheet.php sql injection
A vulnerability, which was classified as critical, was found in SourceCodester Online Timesheet App 1.0. This affects an unknown part of the file /endpoint/delete-timesheet.php. The manipulation of the argument timesheet leads to sql injection. It is possible to initiate the attack remotely. The...
CVE-2024-9319
CVE-2024-9319 affects SourceCodester Online Timesheet App 1.0. The vulnerability is a SQL injection in an unknown part of /endpoint/delete-timesheet.php caused by manipulation of the timesheet parameter. It can be exploited remotely and the exploit has been publicly disclosed, indicating active r...