951 matches found
CVE-2023-1391 SourceCodester Online Tours & Travels Management System ab.php unrestricted upload
A vulnerability, which was classified as problematic, was found in SourceCodester Online Tours & Travels Management System 1.0. Affected is an unknown function of the file admin/ab.php. The manipulation of the argument img leads to unrestricted upload. It is possible to launch the attack remotely...
PT-2023-16950 · Unknown · Sourcecodester Online Pizza Ordering System
Name of the Vulnerable Software and Affected Versions: SourceCodester Online Pizza Ordering System version 1.0 Description: A critical issue has been found, affecting the save menu function, which leads to unrestricted upload. The attack can be launched remotely. Recommendations: For SourceCodest...
Student Management System 跨站脚本漏洞
Student Management System is a simple web-based student management software from the individual developer Sk.Amir Hamza, Bangladesh. A cross-site scripting vulnerability exists in SourceCodester Online Student Management System version 1.0, which stems from incorrect manipulation of the parameter...
CVE-2023-1364
A vulnerability has been found in SourceCodester Online Pizza Ordering System 1.0 and classified as critical. Affected by this vulnerability is an unknown functionality of the file category.php of the component GET Parameter Handler. The manipulation of the argument id leads to sql injection. The...
CVE-2023-1364
A vulnerability has been found in SourceCodester Online Pizza Ordering System 1.0 and classified as critical. Affected by this vulnerability is an unknown functionality of the file category.php of the component GET Parameter Handler. The manipulation of the argument id leads to sql injection. The...
CVE-2023-1309
A vulnerability classified as critical was found in SourceCodester Online Graduate Tracer System 1.0. Affected by this vulnerability is an unknown functionality of the file admin/searchit.php. The manipulation of the argument input leads to sql injection. The attack can be launched remotely. The...
CVE-2023-1308
A vulnerability classified as critical has been found in SourceCodester Online Graduate Tracer System 1.0. Affected is an unknown function of the file admin/adminlog.php. The manipulation of the argument user leads to sql injection. It is possible to launch the attack remotely. The exploit has be...
Sql injection
A vulnerability classified as critical has been found in SourceCodester Online Graduate Tracer System 1.0. Affected is an unknown function of the file admin/adminlog.php. The manipulation of the argument user leads to sql injection. It is possible to launch the attack remotely. The exploit has be...
Sql injection
A vulnerability, which was classified as critical, has been found in SourceCodester Online Graduate Tracer System 1.0. Affected by this issue is some unknown functionality of the file admin/prof.php. The manipulation of the argument id leads to sql injection. The attack may be launched remotely...
CVE-2023-1309 SourceCodester Online Graduate Tracer System search_it.php sql injection
A vulnerability classified as critical was found in SourceCodester Online Graduate Tracer System 1.0. Affected by this vulnerability is an unknown functionality of the file admin/searchit.php. The manipulation of the argument input leads to sql injection. The attack can be launched remotely. The...
CVE-2023-1308 SourceCodester Online Graduate Tracer System adminlog.php sql injection
A vulnerability classified as critical has been found in SourceCodester Online Graduate Tracer System 1.0. Affected is an unknown function of the file admin/adminlog.php. The manipulation of the argument user leads to sql injection. It is possible to launch the attack remotely. The exploit has be...
Online Graduate Tracer System SQL注入漏洞
Online Graduate Tracer System is an online graduate tracer system by the individual developer Carlo Montero. A SQL injection vulnerability exists in SourceCodester Online Graduate Tracer System version 1.0, which stems from an incorrect manipulation of the parameter input resulting in sql injecti...
Online Graduate Tracer System SQL注入漏洞
Online Graduate Tracer System is an online graduate tracer system by the individual developer Carlo Montero. A SQL injection vulnerability exists in SourceCodester Online Graduate Tracer System version 1.0, which stems from an incorrect manipulation of the parameter user resulting in sql injectio...
CVE-2023-1293
A vulnerability was found in SourceCodester Online Graduate Tracer System 1.0 and classified as critical. This issue affects the function mysqliquery of the file admincs.php. The manipulation leads to sql injection. The attack may be initiated remotely. The complexity of an attack is rather high...
CVE-2023-1100
A vulnerability classified as critical has been found in SourceCodester Online Catering Reservation System 1.0. This affects an unknown part of the file /reservation/addmessage.php of the component POST Parameter Handler. The manipulation of the argument fullname leads to sql injection. It is...
Cross site scripting
A vulnerability has been found in SourceCodester Online Pet Shop We App 1.0 and classified as problematic. This vulnerability affects unknown code of the file /petshop/admin/orders/updatestatus.php. The manipulation of the argument oid with the input 1"alert1111 leads to cross site scripting. The...
CVE-2023-1040
A vulnerability, which was classified as critical, has been found in SourceCodester Online Graduate Tracer System 1.0. Affected by this issue is some unknown functionality of the file tracking/admin/addacc.php. The manipulation of the argument id leads to sql injection. The attack may be launched...
CVE-2023-1038
A vulnerability classified as critical has been found in SourceCodester Online Reviewer Management System 1.0. Affected is an unknown function of the file /reviewer0/admins/assessments/pretest/questions-view.php. The manipulation of the argument id leads to sql injection. It is possible to launch...
CVE-2023-1042 SourceCodester Online Pet Shop We App update_status.php cross site scripting
A vulnerability has been found in SourceCodester Online Pet Shop We App 1.0 and classified as problematic. This vulnerability affects unknown code of the file /petshop/admin/orders/updatestatus.php. The manipulation of the argument oid with the input 1"alert1111 leads to cross site scripting. The...
CVE-2023-1040 SourceCodester Online Graduate Tracer System add_acc.php sql injection
A vulnerability, which was classified as critical, has been found in SourceCodester Online Graduate Tracer System 1.0. Affected by this issue is some unknown functionality of the file tracking/admin/addacc.php. The manipulation of the argument id leads to sql injection. The attack may be launched...