CVE-2024-9090 SourceCodester Modern Loan Management System search_member.php sql injection

A vulnerability was found in SourceCodester Modern Loan Management System 1.0. It has been classified as critical. Affected is an unknown function of the file searchmember.php. The manipulation of the argument searchMember leads to sql injection. It is possible to launch the attack remotely. The...

CVE-2024-9090 SourceCodester Modern Loan Management System search_member.php sql injection

A vulnerability was found in SourceCodester Modern Loan Management System 1.0. It has been classified as critical. Affected is an unknown function of the file searchmember.php. The manipulation of the argument searchMember leads to sql injection. It is possible to launch the attack remotely. The...

CVE-2024-9089

CVE-2024-9089 affects SourceCodester Modern Loan Management System 1.0. The vulnerability is a cross-site scripting issue caused by manipulation of the amount parameter in update_loan_record.php. The attack can be initiated remotely, and the exploit has been disclosed publicly. Practical impact i...

CVE-2024-9088

A vulnerability has been found in SourceCodester Telecom Billing Management System 1.0 and classified as critical. This vulnerability affects the function login. The manipulation of the argument uname leads to buffer overflow. The exploit has been disclosed to the public and may be used...

CVE-2024-9088 SourceCodester Telecom Billing Management System login buffer overflow

A vulnerability has been found in SourceCodester Telecom Billing Management System 1.0 and classified as critical. This vulnerability affects the function login. The manipulation of the argument uname leads to buffer overflow. The exploit has been disclosed to the public and may be used...

CVE-2024-9088

CVE-2024-9088 : Multiple sources confirm a buffer overflow in the login function of SourceCodester Telecom Billing Management System 1.0 caused by improper handling of the uname argument. Exploitation has been publicly disclosed, indicating real-world risk, though specific exploit steps are not p...

CVE-2024-9083

A vulnerability classified as problematic has been found in SourceCodester Employee Management System 1.0. This affects an unknown part of the file /Admin/add-admin.php. The manipulation of the argument txtfullname leads to cross site scripting. It is possible to initiate the attack remotely. The...

CVE-2024-9083

SourceCodester Employee Management System 1.0 is affected. The vulnerability lies in /Admin/add-admin.php where improper handling of the txtfullname parameter enables cross-site scripting. It can be triggered remotely and the exploit has been disclosed publicly. There are no patch/version details...

CVE-2024-9083 SourceCodester Employee Management System add-admin.php cross site scripting

A vulnerability classified as problematic has been found in SourceCodester Employee Management System 1.0. This affects an unknown part of the file /Admin/add-admin.php. The manipulation of the argument txtfullname leads to cross site scripting. It is possible to initiate the attack remotely. The...

CVE-2024-9082 SourceCodester Online Eyewear Shop User Creation Users.php improper authorization

A vulnerability was found in SourceCodester Online Eyewear Shop 1.0. It has been rated as critical. Affected by this issue is some unknown functionality of the file /classes/Users.php?f=save of the component User Creation Handler. The manipulation of the argument Type with the input 1 leads to...

CVE-2024-9081

A vulnerability was found in SourceCodester Online Eyewear Shop 1.0. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file viewcategory.php. The manipulation of the argument id leads to sql injection. The attack can be launched remotely. The...

CVE-2024-9081 SourceCodester Online Eyewear Shop view_category.php sql injection

A vulnerability was found in SourceCodester Online Eyewear Shop 1.0. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file viewcategory.php. The manipulation of the argument id leads to sql injection. The attack can be launched remotely. The...

CVE-2024-9081

CVE-2024-9081 affects SourceCodester Online Eyewear Shop 1.0. The issue is in the view_category.php functionality, where manipulating the id parameter leads to SQL injection. The vulnerability can be interacted with remotely, and multiple sources note that exploits have been disclosed publicly. A...

CVE-2024-9081 SourceCodester Online Eyewear Shop view_category.php sql injection

A vulnerability was found in SourceCodester Online Eyewear Shop 1.0. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file viewcategory.php. The manipulation of the argument id leads to sql injection. The attack can be launched remotely. The...

SourceCodester Modern Loan Management System 跨站脚本漏洞

SourceCodester Modern Loan Management System is an open source modern loan management system from SourceCodester. A cross-site scripting vulnerability exists in SourceCodester Modern Loan Management System version 1.0, which stems from an incorrect manipulation of the parameter amount that can le...

CVE-2024-9041 SourceCodester Best House Rental Management System ajax.php sql injection

A vulnerability has been found in SourceCodester Best House Rental Management System 1.0 and classified as critical. This vulnerability affects unknown code of the file /ajax.php?action=updateaccount. The manipulation of the argument firstname/lastname/email leads to sql injection. The attack can...

CVE-2024-9041

CVE-2024-9041 affects SourceCodester Best House Rental Management System 1.0. The vulnerability is an SQL injection in the file /ajax.php?action=update_account caused by improper handling of the firstname/lastname/email parameters. It is exploitable remotely over the network with low privileges a...

CVE-2024-9041 SourceCodester Best House Rental Management System ajax.php sql injection

A vulnerability has been found in SourceCodester Best House Rental Management System 1.0 and classified as critical. This vulnerability affects unknown code of the file /ajax.php?action=updateaccount. The manipulation of the argument firstname/lastname/email leads to sql injection. The attack can...

CVE-2024-9039

A vulnerability, which was classified as critical, has been found in SourceCodester Best House Rental Management System 1.0. Affected by this issue is some unknown functionality of the file /ajax.php?action=signup. The manipulation of the argument firstname/lastname/email leads to sql injection...

CVE-2024-9039 SourceCodester Best House Rental Management System ajax.php sql injection

A vulnerability, which was classified as critical, has been found in SourceCodester Best House Rental Management System 1.0. Affected by this issue is some unknown functionality of the file /ajax.php?action=signup. The manipulation of the argument firstname/lastname/email leads to sql injection...