Lucene search
K

38 matches found

RedhatCVE
RedhatCVE
added 2025/05/23 7:26 a.m.7 views

CVE-2024-0735

A vulnerability was found in SourceCodester Online Tours & Travels Management System 1.0. It has been rated as critical. Affected by this issue is the function exec of the file admin/operations/expense.php. The manipulation leads to sql injection. The attack may be launched remotely. The exploit...

9.8CVSS9.7AI score0.00697EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/23 6:24 a.m.5 views

CVE-2024-10990

A vulnerability classified as critical was found in SourceCodester Online Veterinary Appointment System 1.0. This vulnerability affects unknown code of the file /admin/services/viewservice.php. The manipulation of the argument id leads to sql injection. The attack can be initiated remotely. The...

8.8CVSS9AI score0.00518EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/23 3:53 a.m.7 views

CVE-2023-3383

A vulnerability, which was classified as critical, was found in SourceCodester Game Result Matrix System 1.0. This affects an unknown part of the file /dipam/athlete-profile.php of the component GET Parameter Handler. The manipulation of the argument id leads to sql injection. It is possible to...

9.8CVSS7.4AI score0.00756EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/23 1:48 a.m.9 views

CVE-2023-2348

A vulnerability was found in SourceCodester Service Provider Management System 1.0. It has been rated as critical. This issue affects some unknown processing of the file /admin/user/manageuser.php. The manipulation of the argument id leads to sql injection. The attack may be initiated remotely. T...

9.8CVSS7.4AI score0.0082EPSS
Exploits1References1
NVD
NVD
added 2025/05/15 3:16 p.m.11 views

CVE-2025-44185

SourceCodester Best Employee Management System V1.0 is vulnerable to Cross Site Request Forgery CSRF in /admin/changepass.php via the password parameter...

5.4CVSS0.00178EPSS
Exploits2References3
Cvelist
Cvelist
added 2025/05/09 12:0 a.m.24 views

CVE-2025-46191

Arbitrary File Upload in userpaymentupdate.php in SourceCodester Client Database Management System 1.0 allows unauthenticated users to upload arbitrary files via the uploadedfilecancelled field. Due to the absence of proper file extension checks, MIME type validation, and authentication, attacker...

0.00977EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/04/26 12:39 a.m.7 views

CVE-2025-3765

A vulnerability, which was classified as critical, has been found in SourceCodester Web-based Pharmacy Product Management System 1.0. This issue affects some unknown processing of the file /edit-photo.php. The manipulation of the argument Avatar leads to unrestricted upload. The attack may be...

8.8CVSS7AI score0.00438EPSS
Exploits1References1
CVE
CVE
added 2025/04/03 4:31 a.m.56 views

CVE-2025-3140

CVE-2025-3140 affects SourceCodester Online Medicine Ordering System 1.0. The vulnerability is an SQL injection in the unknown part of the file /view_category.php caused by manipulating the ID parameter. It can be exploited remotely and exploitation has been disclosed publicly. The connected docu...

9.8CVSS7.6AI score0.00463EPSS
Exploits1References5Affected Software1
RedhatCVE
RedhatCVE
added 2025/03/25 3:22 p.m.17 views

CVE-2025-2652

A vulnerability has been found in SourceCodester Employee and Visitor Gate Pass Logging System 1.0 and classified as problematic. Affected by this vulnerability is an unknown functionality. The manipulation leads to exposure of information through directory listing. The attack can be launched...

7.5CVSS7AI score0.00649EPSS
Exploits1References1
Positive Technologies
Positive Technologies
added 2025/03/17 12:0 a.m.4 views

PT-2025-11476 · Sourcecodester · Itsourcecode Vehicle Management System

Name of the Vulnerable Software and Affected Versions: SourceCodester Vehicle Management System version 1.0 Description: A vulnerability was found in the SourceCodester Vehicle Management System, affecting some unknown functionality of the file /confirmbooking.php. The manipulation of the id...

5.4CVSS3.6AI score0.0042EPSS
Exploits1References10
CVE
CVE
added 2025/02/24 12:0 a.m.78 views

CVE-2025-1606

The CVE-2025-1606 entry affects SourceCodester Best Employee Management System 1.0, specifically the file /admin/backup/backups.php, where manipulation leads to information disclosure. Documents consistently state remote exploitation and that the public exploit is disclosed; vendor response is no...

7.5CVSS6.6AI score0.00627EPSS
Exploits1References5Affected Software1
CVE
CVE
added 2025/02/12 11:0 a.m.60 views

CVE-2025-1192

CVE-2025-1192 affects SourceCodester Multi Restaurant Table Reservation System 1.0. The vulnerability is in an unknown function of the file select-menu.php where manipulating the table parameter leads to an SQL injection. Exploitation can be performed remotely, and the exploit has been disclosed ...

8.8CVSS6.8AI score0.00349EPSS
Exploits0References5Affected Software1
RedhatCVE
RedhatCVE
added 2025/02/05 10:13 a.m.14 views

CVE-2024-3376

A vulnerability classified as critical has been found in SourceCodester Computer Laboratory Management System 1.0. This affects an unknown part of the file config.php. The manipulation of the argument url leads to execution after redirect. It is possible to initiate the attack remotely. The explo...

9.8CVSS7AI score0.01337EPSS
Exploits1References1
OSV
OSV
added 2024/06/03 2:15 p.m.1 views

CVE-2024-36568

Sourcecodester Gas Agency Management System v1.0 is vulnerable to SQL Injection via /gasmark/editbrand.php?id=...

9.8CVSS5.8AI score0.0051EPSS
Exploits1References1
NVD
NVD
added 2024/06/03 2:15 p.m.13 views

CVE-2024-36569

Sourcecodester Gas Agency Management System v1.0 is vulnerable to arbitrary code execution via editClientImage.php...

8.1CVSS7.4AI score0.00571EPSS
Exploits1References1
CNNVD
CNNVD
added 2023/03/30 12:0 a.m.3 views

Young Entrepreneur E-Negosyo System SQL注入漏洞

Young Entrepreneur E-Negosyo System is a Young Entrepreneur E-Negosyo System for janobe individual developers. A security vulnerability exists in SourceCodester Young Entrepreneur E-Negosyo System version 1.0, which stems from an incorrect manipulation of the parameter search resulting in sql...

9.8CVSS6.9AI score0.00492EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2023/03/17 11:45 a.m.6 views

CVE-2023-1466 SourceCodester Student Study Center Desk Management System view_student sql injection

A vulnerability was found in SourceCodester Student Study Center Desk Management System 1.0. It has been rated as critical. This issue affects the function viewstudent of the file admin/?page=students/viewstudent. The manipulation of the argument id with the input 3' AND SELECT 2100 FROM...

6.5CVSS6.8AI score0.00541EPSS
Exploits0References2
CNVD
CNVD
added 2021/05/24 12:0 a.m.8 views

SourceCodester Online Examination System Cross-Site Scripting Vulnerability

SourceCodester Online Examination System is an online examination system from SourceCodester, Inc. in the United States. Worlds Online Examination System 1.0 suffers from a cross-site scripting vulnerability that can be exploited by an attacker to inject arbitrary code via the name field...

6.1CVSS6.5AI score0.01533EPSS
Exploits1References1
Rows per page
Query Builder