CVE-2024-8341

A vulnerability classified as critical was found in SourceCodester Petshop Management System 1.0. This vulnerability affects unknown code of the file /controllers/adduser.php. The manipulation of the argument avatar leads to unrestricted upload. The attack can be initiated remotely. The exploit h...

CVE-2024-8340

A vulnerability classified as critical has been found in SourceCodester Electric Billing Management System 1.0. This affects an unknown part of the file /Actions.php?a=login. The manipulation of the argument username leads to sql injection. It is possible to initiate the attack remotely. The...

CVE-2024-8341 SourceCodester Petshop Management System add_user.php unrestricted upload

A vulnerability classified as critical was found in SourceCodester Petshop Management System 1.0. This vulnerability affects unknown code of the file /controllers/adduser.php. The manipulation of the argument avatar leads to unrestricted upload. The attack can be initiated remotely. The exploit h...

CVE-2024-8339 SourceCodester Electric Billing Management System Connection Code ?page=tracks sql injection

A vulnerability was found in SourceCodester Electric Billing Management System 1.0. It has been rated as critical. Affected by this issue is some unknown functionality of the file /?page=tracks of the component Connection Code Handler. The manipulation of the argument code leads to sql injection...

CVE-2024-8337

A vulnerability, which was classified as problematic, has been found in SourceCodester Contact Manager with Export to VCF 1.0. Affected by this issue is some unknown functionality of the file index.html. The manipulation of the argument contactname leads to cross site scripting. The attack may be...

CVE-2024-8337

The CVE-2024-8337 entry affects SourceCodester Contact Manager with Export to VCF 1.0. The vulnerability is a Cross-Site Scripting in the index.html, caused by manipulating the contact_name argument. Affected functionality is unknown in detail across sources, but multiple documents state the issu...

CVE-2024-8336

CVE-2024-8336 affects SourceCodester Music Gallery Site 1.0. The vulnerability is a SQL injection in an unknown function at /php-music/classes/Master.php?f=delete_music where the id parameter is manipulated, and the issue can be exploited remotely. The exploit has been disclosed publicly. Multipl...

SourceCodester Petshop Management System 代码问题漏洞

SourceCodester Petshop Management System is SourceCodester open source a pet store management system . A code issue exists in version 1.0 of the SourceCodester Petshop Management System, which is caused by an unrestricted file upload vulnerability in the avatar parameter of the...

PT-2024-38961 · Sourcecodester · Sourcecodester Computer Laboratory Management System

Name of the Vulnerable Software and Affected Versions: SourceCodester Computer Laboratory Management System version 1.0 Description: A critical vulnerability has been found in the function update settings info of the file /classes/SystemSettings.php?f=update settings. The manipulation of the name...

PT-2024-38951 · Sourcecodester · Sourcecodester Music Gallery Site

Name of the Vulnerable Software and Affected Versions: SourceCodester Music Gallery Site version 1.0 Description: A critical issue was found in the file /php-music/classes/Master.php?f=delete music, where the manipulation of the id argument leads to sql injection. This issue can be exploited...

Water Billing Management System 1.0 Cross Site Request Forgery / File Upload

============================================================================================================================================= | Title : Water Billing Management System 1.0 CSRF Vulnerability | | Author : indoushka | | Tested on : windows 10 FrPro / browser : Mozilla firefox 128.0....

Online Graduate Tracer System 1.0.0 Insecure Direct Object Reference

============================================================================================================================================= | Title : Online Graduate Tracer System V 1.0.0 IDOR Vulnerability | | Author : indoushka | | Tested on : windows 10 FrPro / browser : Mozilla firefox...

CVE-2024-8223

A vulnerability classified as critical was found in SourceCodester Music Gallery Site 1.0. This vulnerability affects unknown code of the file /classes/Master.php?f=deletecategory. The manipulation of the argument id leads to sql injection. The attack can be initiated remotely. The exploit has be...

CVE-2024-8223 SourceCodester Music Gallery Site Master.php sql injection

A vulnerability classified as critical was found in SourceCodester Music Gallery Site 1.0. This vulnerability affects unknown code of the file /classes/Master.php?f=deletecategory. The manipulation of the argument id leads to sql injection. The attack can be initiated remotely. The exploit has be...

CVE-2024-8223 SourceCodester Music Gallery Site Master.php sql injection

A vulnerability classified as critical was found in SourceCodester Music Gallery Site 1.0. This vulnerability affects unknown code of the file /classes/Master.php?f=deletecategory. The manipulation of the argument id leads to sql injection. The attack can be initiated remotely. The exploit has be...

CVE-2024-8221 SourceCodester Music Gallery Site manage_category.php sql injection

A vulnerability was found in SourceCodester Music Gallery Site 1.0. It has been rated as critical. Affected by this issue is some unknown functionality of the file /admin/categories/managecategory.php. The manipulation of the argument id leads to sql injection. The attack may be launched remotely...

CVE-2024-8221 SourceCodester Music Gallery Site manage_category.php sql injection

A vulnerability was found in SourceCodester Music Gallery Site 1.0. It has been rated as critical. Affected by this issue is some unknown functionality of the file /admin/categories/managecategory.php. The manipulation of the argument id leads to sql injection. The attack may be launched remotely...

CVE-2024-8217

A vulnerability has been found in SourceCodester E-Commerce Website 1.0 and classified as critical. This vulnerability affects unknown code of the file /Admin/registration.php. The manipulation of the argument fname leads to sql injection. The attack can be initiated remotely. The exploit has bee...

CVE-2024-8217

CVE-2024-8217 affects SourceCodester E-Commerce Website 1.0, specifically the /Admin/registration.php file where manipulating the fname parameter enables SQL injection. The vulnerability is exploitable remotely, with public disclosure of exploits. Multiple sources corroborate the issue and identi...

CVE-2024-8217 SourceCodester E-Commerce Website registration.php sql injection

A vulnerability has been found in SourceCodester E-Commerce Website 1.0 and classified as critical. This vulnerability affects unknown code of the file /Admin/registration.php. The manipulation of the argument fname leads to sql injection. The attack can be initiated remotely. The exploit has bee...