CVE-2024-8562

A vulnerability was found in SourceCodester PHP CRUD 1.0 and classified as problematic. Affected by this issue is some unknown functionality of the file /endpoint/Add.php. The manipulation of the argument firstname/middlename/lastname leads to cross site scripting. The attack may be launched...

CVE-2024-8562

CVE-2024-8562 refers to a cross-site scripting vulnerability in SourceCodester PHP CRUD 1.0, affecting the file /endpoint/Add.php. The issue arises from manipulating the arguments first_name, middle_name, and last_name, enabling remote, browser-based script execution. Public exploit discussion is...

CVE-2024-8562 SourceCodester PHP CRUD Add.php cross site scripting

A vulnerability was found in SourceCodester PHP CRUD 1.0 and classified as problematic. Affected by this issue is some unknown functionality of the file /endpoint/Add.php. The manipulation of the argument firstname/middlename/lastname leads to cross site scripting. The attack may be launched...

CVE-2024-8561 SourceCodester PHP CRUD Delete Person delete.php sql injection

A vulnerability has been found in SourceCodester PHP CRUD 1.0 and classified as critical. Affected by this vulnerability is an unknown functionality of the file /endpoint/delete.php of the component Delete Person Handler. The manipulation of the argument person leads to sql injection. The attack...

CVE-2024-28557

SQL Injection vulnerability in Sourcecodester php task management system v1.0, allows remote attackers to execute arbitrary code, escalate privileges, and obtain sensitive information via crafted payload to update-admin.php...

CVE-2024-28557

SQL Injection vulnerability in Sourcecodester php task management system v1.0, allows remote attackers to execute arbitrary code, escalate privileges, and obtain sensitive information via crafted payload to update-admin.php...

CVE-2024-3224 SourceCodester PHP Task Management System task-details.php sql injection

A vulnerability has been found in SourceCodester PHP Task Management System 1.0 and classified as critical. Affected by this vulnerability is an unknown functionality of the file task-details.php. The manipulation of the argument taskid leads to sql injection. The attack can be launched remotely...

CVE-2024-3224

CVE-2024-3224 affects SourceCodester PHP Task Management System 1.0, with a vulnerability in the file task-details.php where manipulating the task_id parameter leads to SQL injection. This is a network-accessible issue reported as critical, with public disclosure of exploits per the NVD entry. Th...

CVE-2024-3223

A vulnerability, which was classified as critical, was found in SourceCodester PHP Task Management System 1.0. Affected is an unknown function of the file admin-manage-user.php. The manipulation of the argument adminid leads to sql injection. It is possible to launch the attack remotely. The...

CVE-2024-3222 SourceCodester PHP Task Management System admin-password-change.php sql injection

A vulnerability, which was classified as critical, has been found in SourceCodester PHP Task Management System 1.0. This issue affects some unknown processing of the file admin-password-change.php. The manipulation of the argument adminid leads to sql injection. The attack may be initiated...

CVE-2024-3221 SourceCodester PHP Task Management System attendance-info.php sql injection

A vulnerability classified as critical was found in SourceCodester PHP Task Management System 1.0. This vulnerability affects unknown code of the file attendance-info.php. The manipulation of the argument userid leads to sql injection. The attack can be initiated remotely. The exploit has been...

CVE-2024-29303

The delete admin users function of SourceCodester PHP Task Management System 1.0 is vulnerable to SQL Injection...

CVE-2024-29302

SourceCodester PHP Task Management System 1.0 is vulnerable to SQL Injection via update-employee.php...

CVE-2024-29302

CVE-2024-29302 affects SourceCodester PHP Task Management System 1.0, vulnerable to SQL Injection via update-employee.php. Technical details in PacketStorm show exploitation through unsafely constructed SQL using admin_id from GET and posted data, enabling potentially unauthorized access or data ...

CVE-2024-29301

SourceCodester PHP Task Management System 1.0 is vulnerable to SQL Injection via update-admin.php?adminid=...

CVE-2022-43117

Sourcecodester Password Storage Application in PHP/OOP and MySQL 1.0 was discovered to contain multiple cross-site scripting XSS vulnerabilities via the Name, Username, Description and Site Feature parameters...

CVE-2021-40909

Cross site scripting XSS vulnerability in sourcecodester PHP CRUD without Refresh/Reload using Ajax and DataTables Tutorial v1 by oretnom23, allows remote attackers to execute arbitrary code via the firstname, lastname, and email parameters to /ajaxcrud...

Sourcecodester Phone Shop Sales Managements System SQL Injection Vulnerability

SourceCodester Phone Shop Sales Managements System is a PHP project by SourceCodester, Inc. to manage phone store sales transactions. sourcecodester Phone Shop Sales Managements System 1.0 has a SQL injection vulnerability that can be exploited by attackers to cause SQL injection...

Online Shopping Alphaware 1.0 Cross Site Request Forgery Vulnerability

Exploit for php platform in category web applications Exploit Title: Online Shopping Alphaware 1.0 - Cross-Site Request Forgery Account Takeover Exploit Author: Edo Maland Vendor Homepage: https://www.sourcecodester.com/php/14368/online-shopping-alphaware-phpmysql.html Software Link:...