Lucene search
K

280 matches found

Vulnrichment
Vulnrichment
added 2024/08/18 7:31 p.m.15 views

CVE-2024-7911 SourceCodester Simple Online Bidding System index.php file inclusion

A vulnerability was found in SourceCodester Simple Online Bidding System 1.0. It has been classified as critical. This affects an unknown part of the file /simple-online-bidding-system/bidding/index.php. The manipulation of the argument page leads to file inclusion. It is possible to initiate the...

6.5CVSS7.1AI score0.00749EPSS
Exploits1References4
NVD
NVD
added 2024/08/15 12:15 a.m.16 views

CVE-2024-7800

A vulnerability classified as critical has been found in SourceCodester Simple Online Bidding System 1.0. This affects an unknown part of the file /simple-online-bidding-system/bidding/admin/ajax.php?action=deleteproduct. The manipulation of the argument id leads to sql injection. It is possible ...

7.5CVSS0.00442EPSS
Exploits1References4
NVD
NVD
added 2024/08/15 12:15 a.m.21 views

CVE-2024-7799

A vulnerability was found in SourceCodester Simple Online Bidding System 1.0. It has been rated as critical. Affected by this issue is some unknown functionality of the file /simple-online-bidding-system/bidding/admin/users.php. The manipulation leads to improper authorization. The attack may be...

7.3CVSS0.00561EPSS
Exploits1References4
Cvelist
Cvelist
added 2024/08/14 11:31 p.m.18 views

CVE-2024-7800 SourceCodester Simple Online Bidding System ajax.php sql injection

A vulnerability classified as critical has been found in SourceCodester Simple Online Bidding System 1.0. This affects an unknown part of the file /simple-online-bidding-system/bidding/admin/ajax.php?action=deleteproduct. The manipulation of the argument id leads to sql injection. It is possible ...

6.5CVSS0.00442EPSS
Exploits1References4
CVE
CVE
added 2024/08/14 11:31 p.m.54 views

CVE-2024-7799

SourceCodester Simple Online Bidding System 1.0 contains a vulnerability in the file /simple-online-bidding-system/bidding/admin/users.php that leads to improper authorization. The issue can be exploited remotely and a public exploit has been disclosed. Public remediation status is not confirmed ...

7.3CVSS5.4AI score0.00561EPSS
Exploits1References4Affected Software1
CVE
CVE
added 2024/08/14 11:0 p.m.47 views

CVE-2024-7798

CVE-2024-7798 affects SourceCodester Simple Online Bidding System 1.0. The vulnerability exists in the file /simple-online-bidding-system/bidding/admin/ajax.php?action=login2, where manipulation of the username parameter leads to SQL injection. It is exploitable remotely and has been disclosed pu...

9.8CVSS7.5AI score0.00698EPSS
Exploits1References4Affected Software1
Cvelist
Cvelist
added 2024/08/14 11:0 p.m.19 views

CVE-2024-7797 SourceCodester Simple Online Bidding System ajax.php sql injection

A vulnerability was found in SourceCodester Simple Online Bidding System 1.0. It has been classified as critical. Affected is an unknown function of the file /simple-online-bidding-system/bidding/admin/ajax.php?action=login. The manipulation of the argument username leads to sql injection. It is...

7.5CVSS0.00661EPSS
Exploits1References4
CVE
CVE
added 2024/08/02 2:31 a.m.33 views

CVE-2024-7378

SourceCodester Simple Realtime Quiz System 1.0 is affected by a SQL injection in the id parameter of /manage_question.php. The vulnerability allows remote exploitation and is classified as critical/medium depending on metric set; multiple sources confirm an unauthenticated or low-privilege path c...

9.8CVSS6.8AI score0.00551EPSS
Exploits1References4Affected Software1
OSV
OSV
added 2024/08/02 2:15 a.m.3 views

CVE-2024-7377

A vulnerability has been found in SourceCodester Simple Realtime Quiz System 1.0 and classified as critical. Affected by this vulnerability is an unknown functionality of the file /viewresult.php. The manipulation of the argument qid leads to sql injection. The attack can be launched remotely. Th...

9.8CVSS6.5AI score0.00551EPSS
Exploits1References4
NVD
NVD
added 2024/08/02 2:15 a.m.27 views

CVE-2024-7376

A vulnerability, which was classified as critical, was found in SourceCodester Simple Realtime Quiz System 1.0. Affected is an unknown function of the file /printquizrecords.php. The manipulation of the argument id leads to sql injection. It is possible to launch the attack remotely. The exploit...

9.8CVSS0.0062EPSS
Exploits1References4
CVE
CVE
added 2024/08/02 1:31 a.m.28 views

CVE-2024-7376

CVE-2024-7376 affects SourceCodester Simple Realtime Quiz System 1.0. The vulnerability is an SQL injection in the id parameter of /print_quiz_records.php, allowing remote exploitation. Public exploitation is indicated. No official patch/version fix is provided in the supplied documents; some sou...

9.8CVSS6.8AI score0.0062EPSS
Exploits1References4Affected Software1
NVD
NVD
added 2024/08/02 12:15 a.m.29 views

CVE-2024-7372

A vulnerability was found in SourceCodester Simple Realtime Quiz System 1.0. It has been rated as critical. Affected by this issue is some unknown functionality of the file /quizboard.php. The manipulation of the argument quiz leads to sql injection. The attack may be launched remotely. The explo...

8.8CVSS0.00509EPSS
Exploits1References4
Vulnrichment
Vulnrichment
added 2024/08/02 12:0 a.m.16 views

CVE-2024-7373 SourceCodester Simple Realtime Quiz System ajax.php sql injection

A vulnerability classified as critical has been found in SourceCodester Simple Realtime Quiz System 1.0. This affects an unknown part of the file /ajax.php?action=loadanswered. The manipulation of the argument id leads to sql injection. It is possible to initiate the attack remotely. The exploit...

6.5CVSS7.4AI score0.00509EPSS
Exploits1References4
CVE
CVE
added 2024/08/01 11:31 p.m.57 views

CVE-2024-7372

SourceCodester Simple RealTime Quiz System 1.0 is affected. The vulnerability is a SQL injection in /quiz_board.php triggered by the quiz parameter, allowing remote exploitation. Exploit details are publicly disclosed per CVE-2024-7372, with high impact on confidentiality, integrity, and availabi...

8.8CVSS6.8AI score0.00509EPSS
Exploits1References4Affected Software1
NVD
NVD
added 2024/08/01 11:15 p.m.26 views

CVE-2024-7370

A vulnerability was found in SourceCodester Simple Realtime Quiz System 1.0. It has been classified as critical. Affected is an unknown function of the file /managequiz.php. The manipulation of the argument id leads to sql injection. It is possible to launch the attack remotely. The exploit has...

8.8CVSS0.0049EPSS
Exploits1References4
Cvelist
Cvelist
added 2024/08/01 10:31 p.m.20 views

CVE-2024-7370 SourceCodester Simple Realtime Quiz System manage_quiz.php sql injection

A vulnerability was found in SourceCodester Simple Realtime Quiz System 1.0. It has been classified as critical. Affected is an unknown function of the file /managequiz.php. The manipulation of the argument id leads to sql injection. It is possible to launch the attack remotely. The exploit has...

6.5CVSS0.0049EPSS
Exploits1References4
CVE
CVE
added 2024/08/01 10:31 p.m.56 views

CVE-2024-7370

CVE-2024-7370 affects SourceCodester Simple Realtime Quiz System 1.0. Affected is an unknown function in the file /manage_quiz.php, where manipulating the id parameter leads to SQL injection. Exploitation can be performed remotely, and the exploit has been disclosed publicly (VDB-273354). Connect...

8.8CVSS6.9AI score0.0049EPSS
Exploits1References4Affected Software1
NVD
NVD
added 2024/08/01 10:15 p.m.31 views

CVE-2024-7369

A vulnerability was found in SourceCodester Simple Realtime Quiz System 1.0 and classified as critical. This issue affects some unknown processing of the file /ajax.php?action=login of the component Login. The manipulation of the argument username leads to sql injection. The attack may be initiat...

9.8CVSS0.00635EPSS
Exploits1References4
NVD
NVD
added 2024/08/01 10:15 p.m.31 views

CVE-2024-7368

A vulnerability has been found in SourceCodester Simple Realtime Quiz System 1.0 and classified as problematic. This vulnerability affects unknown code of the file /ajax.php?action=savequiz. The manipulation of the argument title leads to cross site scripting. The attack can be initiated remotely...

5.4CVSS0.00379EPSS
Exploits1References4
Cvelist
Cvelist
added 2024/08/01 10:0 p.m.28 views

CVE-2024-7369 SourceCodester Simple Realtime Quiz System Login ajax.php sql injection

A vulnerability was found in SourceCodester Simple Realtime Quiz System 1.0 and classified as critical. This issue affects some unknown processing of the file /ajax.php?action=login of the component Login. The manipulation of the argument username leads to sql injection. The attack may be initiat...

7.5CVSS0.00635EPSS
Exploits1References4
Rows per page
Query Builder