18 matches found
CVE-2024-2061
A vulnerability classified as critical was found in SourceCodester Petrol Pump Management Software 1.0. This vulnerability affects unknown code of the file /admin/editsupplier.php. The manipulation of the argument id leads to sql injection. The attack can be initiated remotely. The exploit has be...
EUVD-2024-33088
Malicious code in bioql PyPI...
EUVD-2024-33061
Malicious code in bioql PyPI...
CVE-2024-2060
A vulnerability classified as critical has been found in SourceCodester Petrol Pump Management Software 1.0. This affects an unknown part of the file /admin/app/logincrud.php. The manipulation of the argument email leads to sql injection. It is possible to initiate the attack remotely. The exploi...
CVE-2024-2058
A vulnerability was found in SourceCodester Petrol Pump Management Software 1.0. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /admin/app/product.php. The manipulation of the argument photo leads to unrestricted upload. The attack can be...
CVE-2024-10407
CVE-2024-10407 affects SourceCodester Petrol Pump Management Software 1.0. The vulnerability is a SQL injection in the /admin/edit_customer.php file, triggered by manipulating the id parameter, which can be exploited remotely. The exploit has been publicly disclosed. Public details do not specify...
CVE-2024-10406
A vulnerability, which was classified as critical, has been found in SourceCodester Petrol Pump Management Software 1.0. Affected by this issue is some unknown functionality of the file /admin/editfuel.php. The manipulation of the argument id leads to sql injection. The attack may be launched...
CVE-2024-10406 SourceCodester Petrol Pump Management Software edit_fuel.php sql injection
A vulnerability, which was classified as critical, has been found in SourceCodester Petrol Pump Management Software 1.0. Affected by this issue is some unknown functionality of the file /admin/editfuel.php. The manipulation of the argument id leads to sql injection. The attack may be launched...
CVE-2024-10406
Summary (CVE-2024-10406) : A critical SQL injection vulnerability affects SourceCodester Petrol Pump Management Software 1.0 via the file /admin/edit_fuel.php, where manipulating the id parameter enables remote exploitation. Public exploits have been disclosed. Connected sources also reiterate th...
CVE-2024-10380
A vulnerability, which was classified as critical, has been found in SourceCodester Petrol Pump Management Software 1.0. Affected by this issue is some unknown functionality of the file /admin/ajaxproduct.php. The manipulation of the argument dropservices leads to sql injection. The attack may be...
CVE-2024-10380 SourceCodester Petrol Pump Management Software ajax_product.php sql injection
A vulnerability, which was classified as critical, has been found in SourceCodester Petrol Pump Management Software 1.0. Affected by this issue is some unknown functionality of the file /admin/ajaxproduct.php. The manipulation of the argument dropservices leads to sql injection. The attack may be...
CVE-2024-2063
A vulnerability, which was classified as problematic, was found in SourceCodester Petrol Pump Management Software 1.0. Affected is an unknown function of the file /admin/app/profilecrud.php. The manipulation of the argument username leads to cross site scripting. It is possible to launch the atta...
Sql injection
A vulnerability, which was classified as critical, has been found in SourceCodester Petrol Pump Management Software 1.0. This issue affects some unknown processing of the file /admin/editcategories.php. The manipulation of the argument id leads to sql injection. The attack may be initiated...
Cross site scripting
A vulnerability, which was classified as problematic, was found in SourceCodester Petrol Pump Management Software 1.0. Affected is an unknown function of the file /admin/app/profilecrud.php. The manipulation of the argument username leads to cross site scripting. It is possible to launch the atta...
CVE-2024-2063 SourceCodester Petrol Pump Management Software profile_crud.php cross site scripting
A vulnerability, which was classified as problematic, was found in SourceCodester Petrol Pump Management Software 1.0. Affected is an unknown function of the file /admin/app/profilecrud.php. The manipulation of the argument username leads to cross site scripting. It is possible to launch the atta...
CVE-2024-2060 SourceCodester Petrol Pump Management Software login_crud.php sql injection
A vulnerability classified as critical has been found in SourceCodester Petrol Pump Management Software 1.0. This affects an unknown part of the file /admin/app/logincrud.php. The manipulation of the argument email leads to sql injection. It is possible to initiate the attack remotely. The exploi...
CVE-2024-2058
A vulnerability was found in SourceCodester Petrol Pump Management Software 1.0. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /admin/app/product.php. The manipulation of the argument photo leads to unrestricted upload. The attack can be...
CVE-2024-2058 SourceCodester Petrol Pump Management Software product.php unrestricted upload
A vulnerability was found in SourceCodester Petrol Pump Management Software 1.0. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /admin/app/product.php. The manipulation of the argument photo leads to unrestricted upload. The attack can be...