280 matches found
CVE-2024-7911 SourceCodester Simple Online Bidding System index.php file inclusion
A vulnerability was found in SourceCodester Simple Online Bidding System 1.0. It has been classified as critical. This affects an unknown part of the file /simple-online-bidding-system/bidding/index.php. The manipulation of the argument page leads to file inclusion. It is possible to initiate the...
CVE-2024-7800
A vulnerability classified as critical has been found in SourceCodester Simple Online Bidding System 1.0. This affects an unknown part of the file /simple-online-bidding-system/bidding/admin/ajax.php?action=deleteproduct. The manipulation of the argument id leads to sql injection. It is possible ...
CVE-2024-7799
A vulnerability was found in SourceCodester Simple Online Bidding System 1.0. It has been rated as critical. Affected by this issue is some unknown functionality of the file /simple-online-bidding-system/bidding/admin/users.php. The manipulation leads to improper authorization. The attack may be...
CVE-2024-7800 SourceCodester Simple Online Bidding System ajax.php sql injection
A vulnerability classified as critical has been found in SourceCodester Simple Online Bidding System 1.0. This affects an unknown part of the file /simple-online-bidding-system/bidding/admin/ajax.php?action=deleteproduct. The manipulation of the argument id leads to sql injection. It is possible ...
CVE-2024-7799
SourceCodester Simple Online Bidding System 1.0 contains a vulnerability in the file /simple-online-bidding-system/bidding/admin/users.php that leads to improper authorization. The issue can be exploited remotely and a public exploit has been disclosed. Public remediation status is not confirmed ...
CVE-2024-7798
CVE-2024-7798 affects SourceCodester Simple Online Bidding System 1.0. The vulnerability exists in the file /simple-online-bidding-system/bidding/admin/ajax.php?action=login2, where manipulation of the username parameter leads to SQL injection. It is exploitable remotely and has been disclosed pu...
CVE-2024-7797 SourceCodester Simple Online Bidding System ajax.php sql injection
A vulnerability was found in SourceCodester Simple Online Bidding System 1.0. It has been classified as critical. Affected is an unknown function of the file /simple-online-bidding-system/bidding/admin/ajax.php?action=login. The manipulation of the argument username leads to sql injection. It is...
CVE-2024-7378
SourceCodester Simple Realtime Quiz System 1.0 is affected by a SQL injection in the id parameter of /manage_question.php. The vulnerability allows remote exploitation and is classified as critical/medium depending on metric set; multiple sources confirm an unauthenticated or low-privilege path c...
CVE-2024-7377
A vulnerability has been found in SourceCodester Simple Realtime Quiz System 1.0 and classified as critical. Affected by this vulnerability is an unknown functionality of the file /viewresult.php. The manipulation of the argument qid leads to sql injection. The attack can be launched remotely. Th...
CVE-2024-7376
A vulnerability, which was classified as critical, was found in SourceCodester Simple Realtime Quiz System 1.0. Affected is an unknown function of the file /printquizrecords.php. The manipulation of the argument id leads to sql injection. It is possible to launch the attack remotely. The exploit...
CVE-2024-7376
CVE-2024-7376 affects SourceCodester Simple Realtime Quiz System 1.0. The vulnerability is an SQL injection in the id parameter of /print_quiz_records.php, allowing remote exploitation. Public exploitation is indicated. No official patch/version fix is provided in the supplied documents; some sou...
CVE-2024-7372
A vulnerability was found in SourceCodester Simple Realtime Quiz System 1.0. It has been rated as critical. Affected by this issue is some unknown functionality of the file /quizboard.php. The manipulation of the argument quiz leads to sql injection. The attack may be launched remotely. The explo...
CVE-2024-7373 SourceCodester Simple Realtime Quiz System ajax.php sql injection
A vulnerability classified as critical has been found in SourceCodester Simple Realtime Quiz System 1.0. This affects an unknown part of the file /ajax.php?action=loadanswered. The manipulation of the argument id leads to sql injection. It is possible to initiate the attack remotely. The exploit...
CVE-2024-7372
SourceCodester Simple RealTime Quiz System 1.0 is affected. The vulnerability is a SQL injection in /quiz_board.php triggered by the quiz parameter, allowing remote exploitation. Exploit details are publicly disclosed per CVE-2024-7372, with high impact on confidentiality, integrity, and availabi...
CVE-2024-7370
A vulnerability was found in SourceCodester Simple Realtime Quiz System 1.0. It has been classified as critical. Affected is an unknown function of the file /managequiz.php. The manipulation of the argument id leads to sql injection. It is possible to launch the attack remotely. The exploit has...
CVE-2024-7370 SourceCodester Simple Realtime Quiz System manage_quiz.php sql injection
A vulnerability was found in SourceCodester Simple Realtime Quiz System 1.0. It has been classified as critical. Affected is an unknown function of the file /managequiz.php. The manipulation of the argument id leads to sql injection. It is possible to launch the attack remotely. The exploit has...
CVE-2024-7370
CVE-2024-7370 affects SourceCodester Simple Realtime Quiz System 1.0. Affected is an unknown function in the file /manage_quiz.php, where manipulating the id parameter leads to SQL injection. Exploitation can be performed remotely, and the exploit has been disclosed publicly (VDB-273354). Connect...
CVE-2024-7369
A vulnerability was found in SourceCodester Simple Realtime Quiz System 1.0 and classified as critical. This issue affects some unknown processing of the file /ajax.php?action=login of the component Login. The manipulation of the argument username leads to sql injection. The attack may be initiat...
CVE-2024-7368
A vulnerability has been found in SourceCodester Simple Realtime Quiz System 1.0 and classified as problematic. This vulnerability affects unknown code of the file /ajax.php?action=savequiz. The manipulation of the argument title leads to cross site scripting. The attack can be initiated remotely...
CVE-2024-7369 SourceCodester Simple Realtime Quiz System Login ajax.php sql injection
A vulnerability was found in SourceCodester Simple Realtime Quiz System 1.0 and classified as critical. This issue affects some unknown processing of the file /ajax.php?action=login of the component Login. The manipulation of the argument username leads to sql injection. The attack may be initiat...