CVE-2024-8557 SourceCodester Food Ordering Management System cancel-order.php sql injection

A vulnerability classified as critical has been found in SourceCodester Food Ordering Management System 1.0. This affects an unknown part of the file /foms/routers/cancel-order.php. The manipulation of the argument id leads to sql injection. It is possible to initiate the attack remotely. The...

CVE-2024-8557 SourceCodester Food Ordering Management System cancel-order.php sql injection

A vulnerability classified as critical has been found in SourceCodester Food Ordering Management System 1.0. This affects an unknown part of the file /foms/routers/cancel-order.php. The manipulation of the argument id leads to sql injection. It is possible to initiate the attack remotely. The...

CVE-2024-8554

A vulnerability was found in SourceCodester Clinics Patient Management System 2.0 and classified as problematic. This issue affects some unknown processing of the file /users.php. The manipulation of the argument message leads to cross site scripting. The attack may be initiated remotely. The...

CVE-2024-8554 SourceCodester Clinics Patient Management System users.php cross site scripting

A vulnerability was found in SourceCodester Clinics Patient Management System 2.0 and classified as problematic. This issue affects some unknown processing of the file /users.php. The manipulation of the argument message leads to cross site scripting. The attack may be initiated remotely. The...

CVE-2024-8554

CVE-2024-8554 affects SourceCodester Clinics Patient Management System 2.0. The vulnerable component is the /users.php file, where manipulating the message parameter yields cross-site scripting. The issue enables remote exploitation and the exploit has been disclosed publicly. Public-facing explo...

PHP CRUD SQL注入漏洞

PHP CRUD is a PHP-based implementation of add, delete, change and retrieve. A SQL injection vulnerability exists in SourceCodester PHP CRUD version 1.0, which originates from the tblpersonid/firstname/middlename/lastname parameters of the /endpoint/update.php file containing a SQL injection...

PT-2024-39098 · Sourcecodester · Sourcecodester Php Crud

Name of the Vulnerable Software and Affected Versions: SourceCodester PHP CRUD version 1.0 Description: A critical issue has been found in the Delete Person Handler component, specifically in the file /endpoint/delete.php. The manipulation of the person argument leads to SQL injection. This issue...

PT-2024-39099 · Unknown · Sourcecodester Php Crud

Name of the Vulnerable Software and Affected Versions: SourceCodester PHP CRUD version 1.0 Description: A security issue was discovered in the file /endpoint/Add.php, where the manipulation of the arguments first name, middle name, and last name leads to cross-site scripting. The attack can be...

PT-2024-39101 · Sourcecodester · Sourcecodester Php Crud

Name of the Vulnerable Software and Affected Versions: SourceCodester PHP CRUD version 1.0 Description: A critical issue has been identified, affecting the file /endpoint/update.php. The manipulation of the arguments tbl person id, first name, middle name, and last name can lead to SQL injection...

CVE-2024-44739

Sourcecodester Simple Forum Website v1.0 has a SQL injection vulnerability in /php-sqlite-forum/?page=manageuser&id=...

CVE-2024-44739

Sourcecodester Simple Forum Website v1.0 has a SQL injection vulnerability in /php-sqlite-forum/?page=manageuser&id=...

Online Pizza Ordering System 1.0 Insecure Settings

============================================================================================================================================= | Title : Online Pizza Ordering System v1.0 Insecure Settings Vulnerability | | Author : indoushka | | Tested on : windows 10 FrPro / browser : Mozilla...

CVE-2024-8416 SourceCodester Food Ordering Management System ticket-status.php sql injection

A vulnerability was found in SourceCodester Food Ordering Management System 1.0. It has been classified as critical. This affects an unknown part of the file /routers/ticket-status.php. The manipulation of the argument ticketid leads to sql injection. It is possible to initiate the attack remotel...

CVE-2024-8416 SourceCodester Food Ordering Management System ticket-status.php sql injection

A vulnerability was found in SourceCodester Food Ordering Management System 1.0. It has been classified as critical. This affects an unknown part of the file /routers/ticket-status.php. The manipulation of the argument ticketid leads to sql injection. It is possible to initiate the attack remotel...

CVE-2024-8415

A vulnerability was found in SourceCodester Food Ordering Management System 1.0 and classified as critical. Affected by this issue is some unknown functionality of the file /routers/add-ticket.php. The manipulation of the argument id leads to sql injection. The attack may be launched remotely. Th...

CVE-2024-8414

A vulnerability has been found in SourceCodester Insurance Management System 1.0 and classified as problematic. Affected by this vulnerability is an unknown functionality. The manipulation leads to cross-site request forgery. The attack can be launched remotely. The exploit has been disclosed to...

CVE-2024-8415

CVE-2024-8415 affects SourceCodester Food Ordering Management System 1.0. The vulnerability is an SQL injection in the /routers/add-ticket.php file caused by manipulation of the id parameter. The issue is remote-accessible and the exploit has been disclosed publicly. Multiple connected sources co...

CVE-2024-8414

CVE-2024-8414 affects SourceCodester Insurance Management System 1.0. The vulnerability is a cross-site request forgery (CSRF) in an unknown functionality that can be triggered remotely; the exploit has been disclosed publicly. The provided connected documents confirm CSRF impact but do not speci...

CVE-2024-8414 SourceCodester Insurance Management System cross-site request forgery

A vulnerability has been found in SourceCodester Insurance Management System 1.0 and classified as problematic. Affected by this vulnerability is an unknown functionality. The manipulation leads to cross-site request forgery. The attack can be launched remotely. The exploit has been disclosed to...

CVE-2024-8380

A vulnerability was found in SourceCodester Contact Manager with Export to VCF 1.0. It has been rated as critical. This issue affects some unknown processing of the file /endpoint/delete-account.php of the component Delete Contact Handler. The manipulation of the argument contact leads to sql...