Lucene search
K

279 matches found

Positive Technologies
Positive Technologies
added 2025/06/29 12:0 a.m.5 views

PT-2025-27385 · Sourcecodester · Sourcecodester Simple Company Website

Name of the Vulnerable Software and Affected Versions: SourceCodester Simple Company Website version 1.0 Description: A critical issue has been found in the processing of the file /classes/Users.php?f=save, allowing for unrestricted upload through the manipulation of the img argument. This issue...

7.2CVSS7AI score0.00439EPSS
Exploits1References9
RedhatCVE
RedhatCVE
added 2025/05/23 9:49 a.m.7 views

CVE-2024-7368

A vulnerability has been found in SourceCodester Simple Realtime Quiz System 1.0 and classified as problematic. This vulnerability affects unknown code of the file /ajax.php?action=savequiz. The manipulation of the argument title leads to cross site scripting. The attack can be initiated remotely...

5.4CVSS6.4AI score0.00379EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/23 9:30 a.m.8 views

CVE-2024-6280

A vulnerability was found in SourceCodester Simple Online Bidding System 1.0. It has been classified as critical. This affects an unknown part of the file /admin/ajax.php?action=savesettings. The manipulation of the argument img leads to unrestricted upload. It is possible to initiate the attack...

9.8CVSS9.5AI score0.00665EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/23 9:18 a.m.4 views

CVE-2024-3014

A vulnerability classified as critical has been found in SourceCodester Simple Subscription Website 1.0. Affected is an unknown function of the file Actions.php. The manipulation of the argument title leads to sql injection. It is possible to launch the attack remotely. The exploit has been...

8.8CVSS8AI score0.00675EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/23 8:52 a.m.13 views

CVE-2024-5101

A vulnerability was found in SourceCodester Simple Inventory System 1.0. It has been declared as critical. This vulnerability affects unknown code of the file updateproduct.php. The manipulation of the argument ITEM leads to sql injection. The attack can be initiated remotely. The exploit has bee...

8.8CVSS7.6AI score0.00614EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/23 8:31 a.m.7 views

CVE-2024-5099

A vulnerability was found in SourceCodester Simple Inventory System 1.0 and classified as critical. Affected by this issue is some unknown functionality of the file updateprice.php. The manipulation of the argument ITEM leads to sql injection. The attack may be launched remotely. The exploit has...

6.5CVSS7.4AI score0.0049EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/23 8:29 a.m.7 views

CVE-2024-5097

A vulnerability, which was classified as problematic, was found in SourceCodester Simple Inventory System 1.0. Affected is an unknown function of the file /tableedit.phppage=editprice. The manipulation of the argument itemnumber leads to cross-site request forgery. It is possible to launch the...

6.9CVSS6.9AI score0.00373EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/23 8:28 a.m.15 views

CVE-2024-5098

A vulnerability has been found in SourceCodester Simple Inventory System 1.0 and classified as critical. Affected by this vulnerability is an unknown functionality of the file login.php. The manipulation of the argument username leads to sql injection. The exploit has been disclosed to the public...

6.5CVSS7.4AI score0.00484EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/23 7:38 a.m.8 views

CVE-2024-40402

A SQL injection vulnerability was found in 'ajax.php' of Sourcecodester Simple Library Management System 1.0. This vulnerability stems from insufficient user input validation of the 'username' parameter, allowing attackers to inject malicious SQL queries...

6.3CVSS7.8AI score0.00367EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/23 7:36 a.m.5 views

CVE-2024-4929

A vulnerability classified as problematic has been found in SourceCodester Simple Online Bidding System 1.0. This affects an unknown part of the file /simple-online-bidding-system/admin/ajax.php?action=saveuser. The manipulation leads to cross-site request forgery. It is possible to initiate the...

6.9CVSS4.7AI score0.00337EPSS
Exploits1
RedhatCVE
RedhatCVE
added 2025/05/23 2:58 a.m.5 views

CVE-2023-1113

A vulnerability was found in SourceCodester Simple Payroll System 1.0. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the file admin/?page=admin of the component POST Parameter Handler. The manipulation of the argument fullname leads to cross si...

4.8CVSS5.9AI score0.00589EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/23 1:0 a.m.3 views

CVE-2022-2364

A vulnerability, which was classified as problematic, was found in SourceCodester Simple Parking Management System 1.0. This affects an unknown part of the file /cispms/admin/category. The manipulation of the argument vehicletype with the input " leads to cross site scripting. It is possible to...

5.4CVSS6.2AI score0.00511EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 12:44 a.m.14 views

CVE-2022-2701

A vulnerability classified as problematic was found in SourceCodester Simple E-Learning System. This vulnerability affects unknown code of the file /claireblake. The manipulation of the argument Bio leads to cross site scripting. The attack can be initiated remotely. The exploit has been disclose...

6.1CVSS6.4AI score0.00439EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/22 11:7 p.m.10 views

CVE-2022-3548

A vulnerability was found in SourceCodester Simple Cold Storage Management System 1.0. It has been declared as problematic. This vulnerability affects unknown code of the component Add New Storage Handler. The manipulation of the argument Name leads to cross site scripting. The attack can be...

4.8CVSS6.4AI score0.0049EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/22 10:47 p.m.9 views

CVE-2022-3014

A vulnerability classified as problematic was found in SourceCodester Simple Task Managing System. This vulnerability affects unknown code. The manipulation of the argument studentadd leads to cross site scripting. The attack can be initiated remotely. The identifier of this vulnerability is...

6.1CVSS6.3AI score0.0049EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/22 10:38 p.m.10 views

CVE-2022-2683

A vulnerability, which was classified as problematic, was found in SourceCodester Simple Food Ordering System 1.0. This affects an unknown part of the file /login.php. The manipulation of the argument email/password with the input " leads to cross site scripting. It is possible to initiate the...

5.4CVSS6.2AI score0.00525EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/22 10:37 p.m.7 views

CVE-2022-2746

A vulnerability has been found in SourceCodester Simple Online Book Store System and classified as critical. This vulnerability affects unknown code of the file Admin add.php. The manipulation leads to unrestricted upload. The attack can be initiated remotely. VDB-206014 is the identifier assigne...

9.8CVSS7.2AI score0.00463EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/06 6:7 a.m.11 views

CVE-2025-4248

A vulnerability has been found in SourceCodester Simple To-Do List System 1.0 and classified as critical. Affected by this vulnerability is an unknown functionality of the file /completetask.php. The manipulation of the argument ID leads to sql injection. The attack can be launched remotely. The...

9.8CVSS7.4AI score0.00402EPSS
Exploits1References1
OSV
OSV
added 2025/05/04 6:15 a.m.9 views

CVE-2025-4248

A vulnerability has been found in SourceCodester Simple To-Do List System 1.0 and classified as critical. Affected by this vulnerability is an unknown functionality of the file /completetask.php. The manipulation of the argument ID leads to sql injection. The attack can be launched remotely. The...

9.8CVSS5.8AI score0.00402EPSS
Exploits1References5
NVD
NVD
added 2025/05/04 5:15 a.m.23 views

CVE-2025-4247

A vulnerability, which was classified as critical, was found in SourceCodester Simple To-Do List System 1.0. Affected is an unknown function of the file /deletetask.php. The manipulation of the argument ID leads to sql injection. It is possible to launch the attack remotely. The exploit has been...

8.8CVSS0.0039EPSS
Exploits1References5
Rows per page
Query Builder