CVE-2024-8582 SourceCodester Food Ordering Management System index.php cross site scripting

A vulnerability was found in SourceCodester Food Ordering Management System 1.0 and classified as problematic. Affected by this issue is some unknown functionality of the file /index.php. The manipulation of the argument description leads to cross site scripting. The attack may be launched...

CVE-2024-8582

The CVE-2024-8582 issue affects SourceCodester Food Ordering Management System 1.0, specifically the /index.php file. A cross-site scripting (XSS) vulnerability arises from manipulation of the description parameter, enabling an attacker to inject script code remotely. The vulnerability is trigger...

PT-2024-39118 · Sourcecodester · Sourcecodester Food Ordering Management System

Name of the Vulnerable Software and Affected Versions: SourceCodester Food Ordering Management System version 1.0 Description: A security issue was discovered in the system, affecting some unknown functionality of the file /index.php. The manipulation of the description argument leads to cross-si...

CVE-2024-8563

A vulnerability was found in SourceCodester PHP CRUD 1.0. It has been classified as problematic. This affects an unknown part of the file /endpoint/update.php. The manipulation of the argument firstname/middlename/lastname leads to cross site scripting. It is possible to initiate the attack...

CVE-2024-8563

A vulnerability was found in SourceCodester PHP CRUD 1.0. It has been classified as problematic. This affects an unknown part of the file /endpoint/update.php. The manipulation of the argument firstname/middlename/lastname leads to cross site scripting. It is possible to initiate the attack...

CVE-2024-8563 SourceCodester PHP CRUD update.php cross site scripting

A vulnerability was found in SourceCodester PHP CRUD 1.0. It has been classified as problematic. This affects an unknown part of the file /endpoint/update.php. The manipulation of the argument firstname/middlename/lastname leads to cross site scripting. It is possible to initiate the attack...

CVE-2024-8563 SourceCodester PHP CRUD update.php cross site scripting

A vulnerability was found in SourceCodester PHP CRUD 1.0. It has been classified as problematic. This affects an unknown part of the file /endpoint/update.php. The manipulation of the argument firstname/middlename/lastname leads to cross site scripting. It is possible to initiate the attack...

CVE-2024-8561

A vulnerability has been found in SourceCodester PHP CRUD 1.0 and classified as critical. Affected by this vulnerability is an unknown functionality of the file /endpoint/delete.php of the component Delete Person Handler. The manipulation of the argument person leads to sql injection. The attack...

CVE-2024-8562 SourceCodester PHP CRUD Add.php cross site scripting

A vulnerability was found in SourceCodester PHP CRUD 1.0 and classified as problematic. Affected by this issue is some unknown functionality of the file /endpoint/Add.php. The manipulation of the argument firstname/middlename/lastname leads to cross site scripting. The attack may be launched...

CVE-2024-8561

CVE-2024-8561 affects SourceCodester PHP CRUD 1.0, specifically the Delete Person Handler in /endpoint/delete.php. The vulnerability arises from manipulating the person parameter, leading to SQL injection that can be exploited remotely. The connected sources confirm the affected component and att...

CVE-2024-8561 SourceCodester PHP CRUD Delete Person delete.php sql injection

A vulnerability has been found in SourceCodester PHP CRUD 1.0 and classified as critical. Affected by this vulnerability is an unknown functionality of the file /endpoint/delete.php of the component Delete Person Handler. The manipulation of the argument person leads to sql injection. The attack...

CVE-2024-8560

A vulnerability, which was classified as critical, was found in SourceCodester Simple Invoice Generator System 1.0. Affected is an unknown function of the file /saveinvoice.php. The manipulation of the argument...

CVE-2024-8559

SourceCodester Online Food Menu 1.0 is affected by a SQL injection in /endpoint/delete-menu.php via the menu parameter. Root cause: unsafely handling user input in that endpoint enables attacker-controlled SQL execution. Impact per provided docs: potential confidentiality, integrity, and availabi...

CVE-2024-8559 SourceCodester Online Food Menu delete-menu.php sql injection

A vulnerability, which was classified as critical, has been found in SourceCodester Online Food Menu 1.0. This issue affects some unknown processing of the file /endpoint/delete-menu.php. The manipulation of the argument menu leads to sql injection. The attack may be initiated remotely. The explo...

CVE-2024-8558

A vulnerability classified as problematic was found in SourceCodester Food Ordering Management System 1.0. This vulnerability affects unknown code of the file /foms/routers/place-order.php of the component Price Handler. The manipulation of the argument total leads to improper validation of...

CVE-2024-8558

The CVE-2024-8558 entry affects SourceCodester Food Ordering Management System 1.0, specifically the Price Handler component in /foms/routers/place-order.php. The vulnerability arises from manipulating the total argument, causing improper validation of the input quantity. The attack can be initia...

CVE-2024-8558 SourceCodester Food Ordering Management System Price place-order.php improper validation of specified quantity in input

A vulnerability classified as problematic was found in SourceCodester Food Ordering Management System 1.0. This vulnerability affects unknown code of the file /foms/routers/place-order.php of the component Price Handler. The manipulation of the argument total leads to improper validation of...

CVE-2024-8555

A vulnerability was found in SourceCodester Clinics Patient Management System 2.0. It has been classified as problematic. Affected is an unknown function of the file congratulations.php. The manipulation of the argument gotopage leads to open redirect. It is possible to launch the attack remotely...

CVE-2024-8557

A vulnerability classified as critical has been found in SourceCodester Food Ordering Management System 1.0. This affects an unknown part of the file /foms/routers/cancel-order.php. The manipulation of the argument id leads to sql injection. It is possible to initiate the attack remotely. The...

CVE-2024-8557

The CVE-2024-8557 entry concerns SourceCodester Food Ordering Management System 1.0. Affected component: /foms/routers/cancel-order.php. Root cause: manipulation of the id parameter enables SQL injection, allowing remote exploitation. Several sources confirm a publicly disclosed exploit and pract...