CVE-2024-7752

The CVE-2024-7752 vulnerability affects SourceCodester Clinics Patient Management System v1.0 in the update_medicine.php component, where manipulation of the medicine_name parameter enables cross-site scripting (XSS). Exploitation is actionable remotely, and public disclosures exist. No product v...

CVE-2024-7752 SourceCodester Clinics Patient Management System update_medicine.php cross site scripting

A vulnerability was found in SourceCodester Clinics Patient Management System 1.0. It has been classified as problematic. This affects an unknown part of the file /updatemedicine.php. The manipulation of the argument medicinename leads to cross site scripting. It is possible to initiate the attac...

CVE-2024-7751

A vulnerability was found in SourceCodester Clinics Patient Management System 1.0 and classified as critical. Affected by this issue is some unknown functionality of the file /updatemedicine.php. The manipulation of the argument hiddenid leads to sql injection. The attack may be launched remotely...

CVE-2024-7750 SourceCodester Clinics Patient Management System medicines.php sql injection

A vulnerability has been found in SourceCodester Clinics Patient Management System 1.0 and classified as critical. Affected by this vulnerability is an unknown functionality of the file /medicines.php. The manipulation of the argument medicinename leads to sql injection. The attack can be launche...

CVE-2024-7748

A vulnerability, which was classified as critical, has been found in SourceCodester Accounts Manager App 1.0. This issue affects some unknown processing of the file /endpoint/delete-account.php. The manipulation of the argument account leads to sql injection. The attack may be initiated remotely...

CVE-2024-7749

A vulnerability, which was classified as problematic, was found in SourceCodester Accounts Manager App 1.0. Affected is an unknown function of the file /endpoint/add-account.php. The manipulation of the argument accountname leads to cross site scripting. It is possible to launch the attack...

CVE-2024-7749 SourceCodester Accounts Manager App add-account.php cross site scripting

A vulnerability, which was classified as problematic, was found in SourceCodester Accounts Manager App 1.0. Affected is an unknown function of the file /endpoint/add-account.php. The manipulation of the argument accountname leads to cross site scripting. It is possible to launch the attack...

CVE-2024-7749

CVE-2024-7749 affects SourceCodester Accounts Manager App 1.0. The vulnerable component is the file /endpoint/add-account.php, where manipulating the account_name argument enables cross-site scripting. The issue can be exploited remotely and has public exploits disclosed. Multiple connected sourc...

CVE-2024-7749 SourceCodester Accounts Manager App add-account.php cross site scripting

A vulnerability, which was classified as problematic, was found in SourceCodester Accounts Manager App 1.0. Affected is an unknown function of the file /endpoint/add-account.php. The manipulation of the argument accountname leads to cross site scripting. It is possible to launch the attack...

CVE-2024-7748 SourceCodester Accounts Manager App delete-account.php sql injection

A vulnerability, which was classified as critical, has been found in SourceCodester Accounts Manager App 1.0. This issue affects some unknown processing of the file /endpoint/delete-account.php. The manipulation of the argument account leads to sql injection. The attack may be initiated remotely...

CVE-2024-7748

SourceCodester Accounts Manager App 1.0 contains a SQL injection in the /endpoint/delete-account.php endpoint via the account parameter. The vulnerability allows remote exploitation and can impact confidentiality, integrity, and availability as described in multiple sources. The root cause is uns...

Gas Agency Management 2022 Shell Upload

============================================================================================================================================= | Title : Gas Agency Management 2022 Remote File Upload Vulnerability | | Author : indoushka | | Tested on : windows 10 FrPro / browser : Mozilla firefox...

PT-2024-38561 · Sourcecodester · Sourcecodester Clinics Patient Management System

Name of the Vulnerable Software and Affected Versions: SourceCodester Clinics Patient Management System version 1.0 Description: A vulnerability was found in the system, declared as problematic, affecting unknown code of the file /user images/. The manipulation leads to direct request. The attack...

PT-2024-38562 · Sourcecodester · Sourcecodester Clinics Patient Management System

Name of the Vulnerable Software and Affected Versions: SourceCodester Clinics Patient Management System version 1.0 Description: A critical issue affects the processing of the file /ajax/check medicine name.php, where the manipulation of the user name argument leads to sql injection. The attack c...

CVE-2024-7684

A vulnerability classified as problematic was found in SourceCodester Kortex Lite Advocate Office Management System 1.0. Affected by this vulnerability is an unknown functionality of the file addact.php. The manipulation of the argument aname leads to cross site scripting. The attack can be...

CVE-2024-7683

A vulnerability classified as problematic has been found in SourceCodester Kortex Lite Advocate Office Management System 1.0. Affected is an unknown function of the file addcasestage.php. The manipulation of the argument cname leads to cross site scripting. It is possible to launch the attack...

CVE-2024-7684

A vulnerability classified as problematic was found in SourceCodester Kortex Lite Advocate Office Management System 1.0. Affected by this vulnerability is an unknown functionality of the file addact.php. The manipulation of the argument aname leads to cross site scripting. The attack can be...

CVE-2024-7677

A vulnerability was found in SourceCodester Car Driving School Management System 1.0. It has been declared as problematic. Affected by this vulnerability is the function updatesettingsinfo of the file /classes/SystemSettings.php?f=updatesettings. The manipulation of the argument contact/address...

CVE-2024-7676

A vulnerability was found in Sourcecodester Car Driving School Management System 1.0. It has been classified as critical. Affected is the function savepackage of the file /classes/Master.php?f=savepackage. The manipulation of the argument id leads to sql injection. It is possible to launch the...

CVE-2024-7669

A vulnerability was found in SourceCodester Car Driving School Management System 1.0 and classified as critical. This issue affects the function deleteenrollment of the file Master.php. The manipulation of the argument id leads to sql injection. The attack may be initiated remotely. The exploit h...