Lucene search
K

81 matches found

Cvelist
Cvelist
added 2024/05/06 1:31 a.m.22 views

CVE-2024-4512 SourceCodester Prison Management System edit-profile.php cross site scripting

A vulnerability classified as problematic was found in SourceCodester Prison Management System 1.0. This vulnerability affects unknown code of the file /Employee/edit-profile.php. The manipulation of the argument txtfullname/txtdob/txtaddress/txtqualification/cmddept/cmdemployeetype/txtappointmen...

4CVSS4.3AI score0.00642EPSS
Exploits1References4
Vulnrichment
Vulnrichment
added 2024/05/06 1:31 a.m.13 views

CVE-2024-4512 SourceCodester Prison Management System edit-profile.php cross site scripting

A vulnerability classified as problematic was found in SourceCodester Prison Management System 1.0. This vulnerability affects unknown code of the file /Employee/edit-profile.php. The manipulation of the argument txtfullname/txtdob/txtaddress/txtqualification/cmddept/cmdemployeetype/txtappointmen...

4CVSS6.3AI score0.00642EPSS
Exploits1References4
CVE
CVE
added 2024/05/06 1:31 a.m.65 views

CVE-2024-4512

The CVE-2024-4512 vulnerability affects SourceCodester Prison Management System 1.0, specifically the file /Employee/edit-profile.php. The issue is a cross-site scripting flaw caused by manipulating the arguments txtfullname, txtdob, txtaddress, txtqualification, cmddept, cmdemployeetype, and txt...

5.4CVSS6.3AI score0.00642EPSS
Exploits1References4Affected Software1
NVD
NVD
added 2024/05/05 6:15 p.m.16 views

CVE-2024-4500

A vulnerability was found in SourceCodester Prison Management System 1.0. It has been declared as critical. This vulnerability affects unknown code of the file /Employee/edit-photo.php. The manipulation of the argument userImage leads to unrestricted upload. The attack can be initiated remotely...

8.8CVSS6.5AI score0.00857EPSS
Exploits1References4
OSV
OSV
added 2024/05/05 6:15 p.m.3 views

CVE-2024-4500

A vulnerability was found in SourceCodester Prison Management System 1.0. It has been declared as critical. This vulnerability affects unknown code of the file /Employee/edit-photo.php. The manipulation of the argument userImage leads to unrestricted upload. The attack can be initiated remotely...

8.8CVSS5.5AI score0.00857EPSS
Exploits1References4
Vulnrichment
Vulnrichment
added 2024/05/05 6:0 p.m.10 views

CVE-2024-4500 SourceCodester Prison Management System edit-photo.php unrestricted upload

A vulnerability was found in SourceCodester Prison Management System 1.0. It has been declared as critical. This vulnerability affects unknown code of the file /Employee/edit-photo.php. The manipulation of the argument userImage leads to unrestricted upload. The attack can be initiated remotely...

6.5CVSS7.1AI score0.00857EPSS
Exploits1References4
CVE
CVE
added 2024/05/05 6:0 p.m.63 views

CVE-2024-4500

SourceCodester Prison Management System 1.0 contains a vulnerability in the /Employee/edit-photo.php handler. The parameter userImage enables unrestricted file upload, which can be triggered remotely. The issue is explicitly described as allowing an unrestricted upload and has been publicly discl...

8.8CVSS7AI score0.00857EPSS
Exploits1References4Affected Software1
NVD
NVD
added 2024/04/08 3:15 p.m.14 views

CVE-2024-3443

A vulnerability classified as problematic was found in SourceCodester Prison Management System 1.0. This vulnerability affects unknown code of the file /Employee/applyleave.php. The manipulation of the argument txtstartdate/txtenddate leads to cross site scripting. The attack can be initiated...

5.4CVSS3.9AI score0.0055EPSS
Exploits1References4
Cvelist
Cvelist
added 2024/04/08 3:0 p.m.21 views

CVE-2024-3443 SourceCodester Prison Management System apply_leave.php cross site scripting

A vulnerability classified as problematic was found in SourceCodester Prison Management System 1.0. This vulnerability affects unknown code of the file /Employee/applyleave.php. The manipulation of the argument txtstartdate/txtenddate leads to cross site scripting. The attack can be initiated...

4CVSS4.3AI score0.0055EPSS
Exploits1References4
CVE
CVE
added 2024/04/08 2:31 p.m.63 views

CVE-2024-3442

CVE-2024-3442 affects SourceCodester Prison Management System 1.0, with the vulnerability located in /Employee/delete_leave.php. The issue enables SQL injection and can be triggered remotely, with public exploit disclosure noted. Multiple sources corroborate the flaw’s presence in the delete_leav...

8.8CVSS6.8AI score0.00713EPSS
Exploits1References4Affected Software1
NVD
NVD
added 2024/04/08 2:15 p.m.21 views

CVE-2024-3440

A vulnerability was found in SourceCodester Prison Management System 1.0. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /Admin/editprofile.php. The manipulation leads to sql injection. The attack can be launched remotely. The exploit has...

7.2CVSS5.2AI score0.00706EPSS
Exploits1References4
NVD
NVD
added 2024/04/08 2:15 p.m.19 views

CVE-2024-3441

A vulnerability was found in SourceCodester Prison Management System 1.0. It has been rated as critical. Affected by this issue is some unknown functionality of the file /Employee/edit-profile.php. The manipulation leads to sql injection. The attack may be launched remotely. The exploit has been...

8.8CVSS6.7AI score0.00713EPSS
Exploits1References4
Vulnrichment
Vulnrichment
added 2024/04/08 2:0 p.m.13 views

CVE-2024-3441 SourceCodester Prison Management System edit-profile.php sql injection

A vulnerability was found in SourceCodester Prison Management System 1.0. It has been rated as critical. Affected by this issue is some unknown functionality of the file /Employee/edit-profile.php. The manipulation leads to sql injection. The attack may be launched remotely. The exploit has been...

6.5CVSS7.3AI score0.00713EPSS
Exploits1References4
Cvelist
Cvelist
added 2024/04/08 2:0 p.m.26 views

CVE-2024-3440 SourceCodester Prison Management System edit_profile.php sql injection

A vulnerability was found in SourceCodester Prison Management System 1.0. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /Admin/editprofile.php. The manipulation leads to sql injection. The attack can be launched remotely. The exploit has...

5.8CVSS5.6AI score0.00706EPSS
Exploits1References4
CVE
CVE
added 2024/04/08 2:0 p.m.54 views

CVE-2024-3440

CVE-2024-3440 affects SourceCodester Prison Management System 1.0, where an SQL injection in the /Admin/edit_profile.php endpoint enables remote exploitation. Public exploit/disclosure is indicated, with a high-severity impact profile (C/I/A: high). The vulnerability arises from an injectable inp...

7.2CVSS5.2AI score0.00706EPSS
Exploits1References4Affected Software1
NVD
NVD
added 2024/04/08 12:15 p.m.20 views

CVE-2024-3439

A vulnerability was found in SourceCodester Prison Management System 1.0. It has been classified as critical. Affected is an unknown function of the file /Account/login.php. The manipulation leads to sql injection. It is possible to launch the attack remotely. The exploit has been disclosed to th...

9.8CVSS7.5AI score0.00851EPSS
Exploits1References4
Vulnrichment
Vulnrichment
added 2024/04/08 11:31 a.m.14 views

CVE-2024-3439 SourceCodester Prison Management System login.php sql injection

A vulnerability was found in SourceCodester Prison Management System 1.0. It has been classified as critical. Affected is an unknown function of the file /Account/login.php. The manipulation leads to sql injection. It is possible to launch the attack remotely. The exploit has been disclosed to th...

7.5CVSS7.3AI score0.00851EPSS
Exploits1References4
Cvelist
Cvelist
added 2024/04/08 11:0 a.m.23 views

CVE-2024-3438 SourceCodester Prison Management System login.php sql injection

A vulnerability was found in SourceCodester Prison Management System 1.0 and classified as critical. This issue affects some unknown processing of the file /Admin/login.php. The manipulation leads to sql injection. The attack may be initiated remotely. The exploit has been disclosed to the public...

7.5CVSS7.8AI score0.00851EPSS
Exploits1References4
CVE
CVE
added 2024/04/08 11:0 a.m.57 views

CVE-2024-3438

CVE-2024-3438 affects SourceCodester Prison Management System 1.0. The vulnerability exists in the /Admin/login.php file, where input handling enables SQL injection. Exploitation is possible remotely, and public disclosure is noted. Multiple connected documents corroborate the issue and describe ...

9.8CVSS7.5AI score0.00851EPSS
Exploits1References4Affected Software1
NVD
NVD
added 2024/04/08 12:15 a.m.10 views

CVE-2024-3437

A vulnerability was found in SourceCodester Prison Management System 1.0. It has been rated as critical. This issue affects some unknown processing of the file /Admin/add-admin.php of the component Avatar Handler. The manipulation of the argument avatar leads to unrestricted upload. The attack ma...

7.5CVSS7.3AI score0.01063EPSS
Exploits1References4
Rows per page
Query Builder