Lucene search
+L

951 matches found

cvelist
cvelist
added 2023/03/14 2:21 p.m.32 views

CVE-2023-1391 SourceCodester Online Tours & Travels Management System ab.php unrestricted upload

A vulnerability, which was classified as problematic, was found in SourceCodester Online Tours & Travels Management System 1.0. Affected is an unknown function of the file admin/ab.php. The manipulation of the argument img leads to unrestricted upload. It is possible to launch the attack remotely...

5.8CVSS9.8AI score0.00705EPSS
Exploits0References3
ptsecurity
ptsecurity
added 2023/03/14 12:0 a.m.7 views

PT-2023-16950 · Unknown · Sourcecodester Online Pizza Ordering System

Name of the Vulnerable Software and Affected Versions: SourceCodester Online Pizza Ordering System version 1.0 Description: A critical issue has been found, affecting the save menu function, which leads to unrestricted upload. The attack can be launched remotely. Recommendations: For SourceCodest...

9.8CVSS7.3AI score0.00886EPSS
Exploits1References7
cnnvd
cnnvd
added 2023/03/14 12:0 a.m.6 views

Student Management System 跨站脚本漏洞

Student Management System is a simple web-based student management software from the individual developer Sk.Amir Hamza, Bangladesh. A cross-site scripting vulnerability exists in SourceCodester Online Student Management System version 1.0, which stems from incorrect manipulation of the parameter...

6.1CVSS4.1AI score0.00562EPSS
Exploits1References4
osv
osv
added 2023/03/13 8:15 a.m.3 views

CVE-2023-1364

A vulnerability has been found in SourceCodester Online Pizza Ordering System 1.0 and classified as critical. Affected by this vulnerability is an unknown functionality of the file category.php of the component GET Parameter Handler. The manipulation of the argument id leads to sql injection. The...

7.5CVSS6.5AI score0.00597EPSS
Exploits1References3
nvd
nvd
added 2023/03/13 8:15 a.m.20 views

CVE-2023-1364

A vulnerability has been found in SourceCodester Online Pizza Ordering System 1.0 and classified as critical. Affected by this vulnerability is an unknown functionality of the file category.php of the component GET Parameter Handler. The manipulation of the argument id leads to sql injection. The...

7.5CVSS6.9AI score0.00597EPSS
Exploits1References3
nvd
nvd
added 2023/03/10 8:15 a.m.24 views

CVE-2023-1309

A vulnerability classified as critical was found in SourceCodester Online Graduate Tracer System 1.0. Affected by this vulnerability is an unknown functionality of the file admin/searchit.php. The manipulation of the argument input leads to sql injection. The attack can be launched remotely. The...

9.8CVSS7.4AI score0.00737EPSS
Exploits1References3
nvd
nvd
added 2023/03/10 8:15 a.m.26 views

CVE-2023-1308

A vulnerability classified as critical has been found in SourceCodester Online Graduate Tracer System 1.0. Affected is an unknown function of the file admin/adminlog.php. The manipulation of the argument user leads to sql injection. It is possible to launch the attack remotely. The exploit has be...

9.8CVSS7.5AI score0.00737EPSS
Exploits1References3
prion
prion
added 2023/03/10 8:15 a.m.20 views

Sql injection

A vulnerability classified as critical has been found in SourceCodester Online Graduate Tracer System 1.0. Affected is an unknown function of the file admin/adminlog.php. The manipulation of the argument user leads to sql injection. It is possible to launch the attack remotely. The exploit has be...

6.5CVSS9.7AI score0.00737EPSS
Exploits1References3Affected Software1
prion
prion
added 2023/03/10 8:15 a.m.24 views

Sql injection

A vulnerability, which was classified as critical, has been found in SourceCodester Online Graduate Tracer System 1.0. Affected by this issue is some unknown functionality of the file admin/prof.php. The manipulation of the argument id leads to sql injection. The attack may be launched remotely...

6.5CVSS9.6AI score0.00737EPSS
Exploits1References3Affected Software1
cvelist
cvelist
added 2023/03/10 7:35 a.m.29 views

CVE-2023-1309 SourceCodester Online Graduate Tracer System search_it.php sql injection

A vulnerability classified as critical was found in SourceCodester Online Graduate Tracer System 1.0. Affected by this vulnerability is an unknown functionality of the file admin/searchit.php. The manipulation of the argument input leads to sql injection. The attack can be launched remotely. The...

6.5CVSS10AI score0.00737EPSS
Exploits1References3
cvelist
cvelist
added 2023/03/10 7:35 a.m.33 views

CVE-2023-1308 SourceCodester Online Graduate Tracer System adminlog.php sql injection

A vulnerability classified as critical has been found in SourceCodester Online Graduate Tracer System 1.0. Affected is an unknown function of the file admin/adminlog.php. The manipulation of the argument user leads to sql injection. It is possible to launch the attack remotely. The exploit has be...

6.5CVSS10AI score0.00737EPSS
Exploits1References3
cnnvd
cnnvd
added 2023/03/10 12:0 a.m.5 views

Online Graduate Tracer System SQL注入漏洞

Online Graduate Tracer System is an online graduate tracer system by the individual developer Carlo Montero. A SQL injection vulnerability exists in SourceCodester Online Graduate Tracer System version 1.0, which stems from an incorrect manipulation of the parameter input resulting in sql injecti...

9.8CVSS7.1AI score0.00737EPSS
Exploits1References4
cnnvd
cnnvd
added 2023/03/10 12:0 a.m.4 views

Online Graduate Tracer System SQL注入漏洞

Online Graduate Tracer System is an online graduate tracer system by the individual developer Carlo Montero. A SQL injection vulnerability exists in SourceCodester Online Graduate Tracer System version 1.0, which stems from an incorrect manipulation of the parameter user resulting in sql injectio...

9.8CVSS7.1AI score0.00737EPSS
Exploits1References4
nvd
nvd
added 2023/03/09 3:15 p.m.33 views

CVE-2023-1293

A vulnerability was found in SourceCodester Online Graduate Tracer System 1.0 and classified as critical. This issue affects the function mysqliquery of the file admincs.php. The manipulation leads to sql injection. The attack may be initiated remotely. The complexity of an attack is rather high...

8.1CVSS6.5AI score0.00572EPSS
Exploits0References3
nvd
nvd
added 2023/02/28 9:15 p.m.23 views

CVE-2023-1100

A vulnerability classified as critical has been found in SourceCodester Online Catering Reservation System 1.0. This affects an unknown part of the file /reservation/addmessage.php of the component POST Parameter Handler. The manipulation of the argument fullname leads to sql injection. It is...

9.8CVSS7.4AI score0.00765EPSS
Exploits1References3
prion
prion
added 2023/02/26 1:15 p.m.21 views

Cross site scripting

A vulnerability has been found in SourceCodester Online Pet Shop We App 1.0 and classified as problematic. This vulnerability affects unknown code of the file /petshop/admin/orders/updatestatus.php. The manipulation of the argument oid with the input 1"alert1111 leads to cross site scripting. The...

4CVSS6.1AI score0.00557EPSS
Exploits1References3Affected Software1
nvd
nvd
added 2023/02/26 12:15 p.m.21 views

CVE-2023-1040

A vulnerability, which was classified as critical, has been found in SourceCodester Online Graduate Tracer System 1.0. Affected by this issue is some unknown functionality of the file tracking/admin/addacc.php. The manipulation of the argument id leads to sql injection. The attack may be launched...

9.8CVSS7.3AI score0.00584EPSS
Exploits0References3
nvd
nvd
added 2023/02/26 12:15 p.m.24 views

CVE-2023-1038

A vulnerability classified as critical has been found in SourceCodester Online Reviewer Management System 1.0. Affected is an unknown function of the file /reviewer0/admins/assessments/pretest/questions-view.php. The manipulation of the argument id leads to sql injection. It is possible to launch...

9.8CVSS7.5AI score0.00808EPSS
Exploits1References3
cvelist
cvelist
added 2023/02/26 12:0 p.m.31 views

CVE-2023-1042 SourceCodester Online Pet Shop We App update_status.php cross site scripting

A vulnerability has been found in SourceCodester Online Pet Shop We App 1.0 and classified as problematic. This vulnerability affects unknown code of the file /petshop/admin/orders/updatestatus.php. The manipulation of the argument oid with the input 1"alert1111 leads to cross site scripting. The...

4CVSS6.3AI score0.00557EPSS
Exploits1References3
cvelist
cvelist
added 2023/02/26 11:55 a.m.26 views

CVE-2023-1040 SourceCodester Online Graduate Tracer System add_acc.php sql injection

A vulnerability, which was classified as critical, has been found in SourceCodester Online Graduate Tracer System 1.0. Affected by this issue is some unknown functionality of the file tracking/admin/addacc.php. The manipulation of the argument id leads to sql injection. The attack may be launched...

6.5CVSS9.9AI score0.00584EPSS
Exploits0References3
Rows per page
Query Builder