Car Rental Management System 1.0 Cross Site Scripting

============================================================================================================================================= | Title : Car Rental Management System 1.0 XSS Vulnerability | | Author : indoushka | | Tested on : windows 10 FrPro / browser : Mozilla firefox 128.0.3 64...

SourceCodester Clinics Patient Management System SQL注入漏洞

SourceCodester Clinics Patient Management System is a clinic patient management system from SourceCodester, Inc. A SQL injection vulnerability exists in SourceCodester Clinics Patient Management System version 1.0, which stems from an SQL injection vulnerability in the username parameter of the...

PT-2024-38596 · Unknown · Sourcecodester Online Graduate Tracer System

Name of the Vulnerable Software and Affected Versions: SourceCodester Online Graduate Tracer System version 1.0 Description: A vulnerability was found in the system, affecting an unknown functionality of the file /tracking/nbproject/. The manipulation leads to exposure of information through...

CVE-2024-7800

This CVE concerns SourceCodester Simple Online Bidding System 1.0. A SQL injection vulnerability exists in the admin endpoint /simple-online-bidding-system/bidding/admin/ajax.php?action=delete_product, triggered by manipulating the id parameter. The issue is exploitable remotely and affects the c...

CVE-2024-7799 SourceCodester Simple Online Bidding System users.php improper authorization

A vulnerability was found in SourceCodester Simple Online Bidding System 1.0. It has been rated as critical. Affected by this issue is some unknown functionality of the file /simple-online-bidding-system/bidding/admin/users.php. The manipulation leads to improper authorization. The attack may be...

CVE-2024-7799 SourceCodester Simple Online Bidding System users.php improper authorization

A vulnerability was found in SourceCodester Simple Online Bidding System 1.0. It has been rated as critical. Affected by this issue is some unknown functionality of the file /simple-online-bidding-system/bidding/admin/users.php. The manipulation leads to improper authorization. The attack may be...

CVE-2024-7798 SourceCodester Simple Online Bidding System ajax.php sql injection

A vulnerability was found in SourceCodester Simple Online Bidding System 1.0. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /simple-online-bidding-system/bidding/admin/ajax.php?action=login2. The manipulation of the argument username lead...

CVE-2024-7798 SourceCodester Simple Online Bidding System ajax.php sql injection

A vulnerability was found in SourceCodester Simple Online Bidding System 1.0. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /simple-online-bidding-system/bidding/admin/ajax.php?action=login2. The manipulation of the argument username lead...

CVE-2024-7797 SourceCodester Simple Online Bidding System ajax.php sql injection

A vulnerability was found in SourceCodester Simple Online Bidding System 1.0. It has been classified as critical. Affected is an unknown function of the file /simple-online-bidding-system/bidding/admin/ajax.php?action=login. The manipulation of the argument username leads to sql injection. It is...

CVE-2024-7797

CVE-2024-7797 affects SourceCodester Simple Online Bidding System v1.0. The vulnerability resides in an unknown function of the file /simple-online-bidding-system/bidding/admin/ajax.php?action=login, where manipulation of the username parameter leads to SQL injection. It can be exploited remotely...

CVE-2024-7793

A vulnerability was found in SourceCodester Task Progress Tracker 1.0. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the file /endpoint/add-task.php. The manipulation of the argument taskname leads to cross site scripting. The attack can be...

CVE-2024-7792 SourceCodester Task Progress Tracker delete-task.php sql injection

A vulnerability was found in SourceCodester Task Progress Tracker 1.0. It has been classified as critical. Affected is an unknown function of the file /endpoint/delete-task.php. The manipulation of the argument task leads to sql injection. It is possible to launch the attack remotely. The exploit...

CVE-2024-7792 SourceCodester Task Progress Tracker delete-task.php sql injection

A vulnerability was found in SourceCodester Task Progress Tracker 1.0. It has been classified as critical. Affected is an unknown function of the file /endpoint/delete-task.php. The manipulation of the argument task leads to sql injection. It is possible to launch the attack remotely. The exploit...

CVE-2024-7753

A vulnerability was found in SourceCodester Clinics Patient Management System 1.0. It has been declared as problematic. This vulnerability affects unknown code of the file /userimages/. The manipulation leads to direct request. The attack can be initiated remotely. The exploit has been disclosed ...

CVE-2024-7754

SourceCodester Clinics Patient Management System 1.0 contains a SQL injection vulnerability in /ajax/check_medicine_name.php via the user_name parameter. The issue is remote-exploitable and has been publicly disclosed. Several sources (including PT Security and other CVE aggregations) corroborate...

CVE-2024-7753

SourceCodester Clinics Patient Management System 1.0 contains a vulnerability in the /user_images/ path that can be triggered remotely via an unauthorized direct request. The issue affects unknown code in that file, and the exploit has been disclosed publicly. CVSS context in the record indicates...

CVE-2024-7753 SourceCodester Clinics Patient Management System user_images direct request

A vulnerability was found in SourceCodester Clinics Patient Management System 1.0. It has been declared as problematic. This vulnerability affects unknown code of the file /userimages/. The manipulation leads to direct request. The attack can be initiated remotely. The exploit has been disclosed ...

Covid-19 Contact Tracing System 1.0 SQL Injection

============================================================================================================================================= | Title : Covid-19 Contact Tracing System 1.0 auth by pass Vulnerability | | Author : indoushka | | Tested on : windows 10 FrPro / browser : Mozilla firefo...

PT-2024-38598 · Unknown · Sourcecodester Daily Expenses Monitoring App

Name of the Vulnerable Software and Affected Versions: SourceCodester Daily Expenses Monitoring App version 1.0 Description: A critical issue has been found in the SourceCodester Daily Expenses Monitoring App, affecting an unknown part of the file /endpoint/delete-expense.php. The manipulation of...

PT-2024-38588 · Sourcecodester · Sourcecodester Simple Online Bidding System

Name of the Vulnerable Software and Affected Versions: SourceCodester Simple Online Bidding System version 1.0 Description: A critical issue has been found in the software, affecting an unknown function of the file /simple-online-bidding-system/bidding/admin/ajax.php?action=login. The manipulatio...