CVE-2024-8084

CVE-2024-8084 affects SourceCodester Online Computer and Laptop Store 1.0. The vulnerability resides in the Setting Handler’s SystemSettings.php?f=update_settings, where the System Name parameter can be manipulated to trigger cross-site scripting. The issue is exploitable remotely and exploits ha...

CVE-2024-8084 SourceCodester Online Computer and Laptop Store Setting SystemSettings.php cross site scripting

A vulnerability, which was classified as problematic, was found in SourceCodester Online Computer and Laptop Store 1.0. This affects an unknown part of the file /php-ocls/classes/SystemSettings.php?f=updatesettings of the component Setting Handler. The manipulation of the argument System Name lea...

CVE-2024-8083

Summary: CVE-2024-8083 affects SourceCodester Online Computer and Laptop Store 1.0, specifically the vulnerable function in /php-ocls/classes/Master.php?f=pay_order where the id parameter can be manipulated to trigger an SQL injection. The issue is exploitable remotely and, according to multiple ...

CVE-2024-8083 SourceCodester Online Computer and Laptop Store Master.php sql injection

A vulnerability, which was classified as critical, has been found in SourceCodester Online Computer and Laptop Store 1.0. Affected by this issue is some unknown functionality of the file /php-ocls/classes/Master.php?f=payorder. The manipulation of the argument id leads to sql injection. The attac...

CVE-2024-8080 SourceCodester Online Health Care System search.php sql injection

A vulnerability classified as critical has been found in SourceCodester Online Health Care System 1.0. Affected is an unknown function of the file search.php. The manipulation of the argument fname with the input 1%' or 1=1 UNION SELECT...

CVE-2024-8080 SourceCodester Online Health Care System search.php sql injection

A vulnerability classified as critical has been found in SourceCodester Online Health Care System 1.0. Affected is an unknown function of the file search.php. The manipulation of the argument fname with the input 1%' or 1=1 UNION SELECT...

SourceCodester Online Health Care System SQL注入漏洞

SourceCodester Online Health Care System is a Php-based website builder for online health checkups from SourceCodester, Inc. A SQL injection vulnerability exists in SourceCodester Online Health Care System version 1.0, which is caused by a SQL injection vulnerability in the fname parameter of the...

PT-2024-38796 · Sourcecodester · Sourcecodester E-Commerce System

Name of the Vulnerable Software and Affected Versions: SourceCodester E-Commerce System version 1.0 Description: A critical issue affects the processing of the file /ecommerce/popup Item.php, where the manipulation of the id argument leads to SQL injection. The attack can be initiated remotely. T...

Online Diagnostic Lab Management System 1.0 Arbitrary File Upload

============================================================================================================================================= | Title : Online Diagnostic Lab Management System v1.0 Remote File Upload Vulnerability | | Author : indoushka | | Tested on : windows 10 FrPro / browser :...

CVE-2024-7947

A vulnerability classified as critical has been found in SourceCodester Point of Sales and Inventory Management System 1.0. This affects an unknown part of the file login.php. The manipulation of the argument email leads to sql injection. It is possible to initiate the attack remotely. The exploi...

CVE-2024-7949

CVE-2024-7949 corresponds to a SQL injection vulnerability in SourceCodester Online Graduate Tracer System up to version 1.0, triggered by manipulating an input argument in /tracking/admin/fetch_genderit.php. The issue is exploitable remotely and information about the exploit has been publicly di...

CVE-2024-7949 SourceCodester Online Graduate Tracer System fetch_genderit.php sql injection

A vulnerability, which was classified as critical, was found in SourceCodester Online Graduate Tracer System up to 1.0. Affected is an unknown function of the file /tracking/admin/fetchgenderit.php. The manipulation of the argument request leads to sql injection. It is possible to launch the atta...

CVE-2024-7948 SourceCodester Accounts Manager App Update Account Page update-account.php cross site scripting

A vulnerability classified as problematic was found in SourceCodester Accounts Manager App 1.0. This vulnerability affects unknown code of the file update-account.php of the component Update Account Page. The manipulation of the argument Account Name/Username/Password/Link leads to cross site...

CVE-2024-7948

The CVE-2024-7948 entry concerns SourceCodester Accounts Manager App 1.0. The vulnerability lies in the Update Account Page’s update-account.php where manipulating parameters (Account Name, Username, Password, Link) enables cross-site scripting. Descriptions across multiple sources indicate remot...

CVE-2024-7947

CVE-2024-7947 affects SourceCodester Point of Sales and Inventory Management System 1.0. The vulnerability resides in an injectable parameter within the file login.php where modifying the email argument enables an SQL injection. Exploitation can be performed remotely, and public disclosures indic...

CVE-2024-7947 SourceCodester Point of Sales and Inventory Management System login.php sql injection

A vulnerability classified as critical has been found in SourceCodester Point of Sales and Inventory Management System 1.0. This affects an unknown part of the file login.php. The manipulation of the argument email leads to sql injection. It is possible to initiate the attack remotely. The exploi...

CVE-2024-7947 SourceCodester Point of Sales and Inventory Management System login.php sql injection

A vulnerability classified as critical has been found in SourceCodester Point of Sales and Inventory Management System 1.0. This affects an unknown part of the file login.php. The manipulation of the argument email leads to sql injection. It is possible to initiate the attack remotely. The exploi...

SourceCodester Online Graduate Tracer System SQL注入漏洞

SourceCodester Online Graduate Tracer System is a web-based application project developed by SourceCodester using PHP and MySQL database. Its main purpose is to provide a platform for a school to track their alumni and generate graphical reports on alumni status. SourceCodester Online Graduate...

CVE-2024-7931

A vulnerability was found in SourceCodester Online Graduate Tracer System 1.0 and classified as critical. This issue affects some unknown processing of the file /tracking/admin/viewcsprofile.php. The manipulation of the argument id leads to sql injection. The attack may be initiated remotely. The...

CVE-2024-7931 SourceCodester Online Graduate Tracer System view_csprofile.php sql injection

A vulnerability was found in SourceCodester Online Graduate Tracer System 1.0 and classified as critical. This issue affects some unknown processing of the file /tracking/admin/viewcsprofile.php. The manipulation of the argument id leads to sql injection. The attack may be initiated remotely. The...