CVE-2024-7289 SourceCodester Establishment Billing Management System manage_payment.php sql injection

A vulnerability was found in SourceCodester Establishment Billing Management System 1.0. It has been rated as critical. Affected by this issue is some unknown functionality of the file /managepayment.php. The manipulation of the argument id leads to sql injection. The attack may be launched...

CVE-2024-7289

SourceCodester Establishment Billing Management System 1.0 contains a SQL injection vulnerability in the manage_payment.php file. The issue arises from manipulation of the id parameter, allowing remote exploitation. Multiple sources (NVD, CVE records, CVE list) confirm the vulnerability and publi...

CVE-2024-7288

A vulnerability was found in SourceCodester Establishment Billing Management System 1.0. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /ajax.php?action=deleteblock. The manipulation of the argument id leads to sql injection. The attack ca...

CVE-2024-7287

A vulnerability was found in SourceCodester Establishment Billing Management System 1.0. It has been classified as critical. Affected is an unknown function of the file /manageuser.php. The manipulation of the argument id leads to sql injection. It is possible to launch the attack remotely. The...

CVE-2024-7288

CVE-2024-7288 affects the SourceCodester Establishment Billing Management System 1.0. The root cause is a SQL injection in the file /ajax.php?action=delete_block caused by manipulation of the id parameter. The vulnerability is exploitable remotely, with public disclosure of the exploit. Multiple ...

CVE-2024-7288 SourceCodester Establishment Billing Management System sql injection

A vulnerability was found in SourceCodester Establishment Billing Management System 1.0. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /ajax.php?action=deleteblock. The manipulation of the argument id leads to sql injection. The attack ca...

CVE-2024-7287 SourceCodester Establishment Billing Management System manage_user.php sql injection

A vulnerability was found in SourceCodester Establishment Billing Management System 1.0. It has been classified as critical. Affected is an unknown function of the file /manageuser.php. The manipulation of the argument id leads to sql injection. It is possible to launch the attack remotely. The...

CVE-2024-7285

A vulnerability has been found in SourceCodester Establishment Billing Management System 1.0 and classified as problematic. This vulnerability affects unknown code of the file /admin/ajax.php?action=savesettings. The manipulation of the argument name leads to cross site scripting. The attack can ...

CVE-2024-7286

CVE-2024-7286 affects SourceCodester Establishment Billing Management System 1.0, specifically the Login component via /admin/ajax.php?action=login. The vulnerability arises from improper handling of the username parameter, enabling SQL injection. Impact is described as high/critical with potenti...

CVE-2024-7286 SourceCodester Establishment Billing Management System Login sql injection

A vulnerability was found in SourceCodester Establishment Billing Management System 1.0 and classified as critical. This issue affects some unknown processing of the file /admin/ajax.php?action=login of the component Login. The manipulation of the argument username leads to sql injection. The...

CVE-2024-7285 SourceCodester Establishment Billing Management System cross site scripting

A vulnerability has been found in SourceCodester Establishment Billing Management System 1.0 and classified as problematic. This vulnerability affects unknown code of the file /admin/ajax.php?action=savesettings. The manipulation of the argument name leads to cross site scripting. The attack can ...

CVE-2024-7285

Summary of CVE-2024-7285 : The vulnerability affects SourceCodester Establishment Billing Management System 1.0, specifically the /admin/ajax.php?action=save_settings endpoint. The issue arises from manipulation of the name parameter, enabling cross-site scripting (XSS). Attacks can be launched r...

CVE-2024-7285 SourceCodester Establishment Billing Management System cross site scripting

A vulnerability has been found in SourceCodester Establishment Billing Management System 1.0 and classified as problematic. This vulnerability affects unknown code of the file /admin/ajax.php?action=savesettings. The manipulation of the argument name leads to cross site scripting. The attack can ...

CVE-2024-7284

A vulnerability, which was classified as problematic, was found in SourceCodester Lot Reservation Management System 1.0. This affects an unknown part of the file /admin/ajax.php?action=savesettings. The manipulation of the argument about leads to cross site scripting. It is possible to initiate t...

CVE-2024-7284 SourceCodester Lot Reservation Management System cross site scripting

A vulnerability, which was classified as problematic, was found in SourceCodester Lot Reservation Management System 1.0. This affects an unknown part of the file /admin/ajax.php?action=savesettings. The manipulation of the argument about leads to cross site scripting. It is possible to initiate t...

CVE-2024-7284

CVE-2024-7284 affects SourceCodester Lot Reservation Management System 1.0. The vulnerability exists in the /admin/ajax.php?action=save_settings endpoint where manipulation of the about parameter enables cross-site scripting. Exploitation can be performed remotely, and public disclosures of the e...

CVE-2024-7283 SourceCodester Lot Reservation Management System manage_user.php sql injection

A vulnerability, which was classified as critical, has been found in SourceCodester Lot Reservation Management System 1.0. Affected by this issue is some unknown functionality of the file /admin/manageuser.php. The manipulation of the argument id leads to sql injection. The attack may be launched...

CVE-2024-7282

A vulnerability classified as critical was found in SourceCodester Lot Reservation Management System 1.0. Affected by this vulnerability is an unknown functionality of the file /admin/managemodel.php. The manipulation of the argument id leads to sql injection. The attack can be launched remotely...

CVE-2024-7282

CVE-2024-7282 affects SourceCodester Lot Reservation Management System 1.0. The vulnerability is a SQL injection in an unknown-functionality path of the file /admin/manage_model.php, caused by manipulation of the id parameter. It can be exploited remotely and the exploit has been publicly disclos...

CVE-2024-7282 SourceCodester Lot Reservation Management System manage_model.php sql injection

A vulnerability classified as critical was found in SourceCodester Lot Reservation Management System 1.0. Affected by this vulnerability is an unknown functionality of the file /admin/managemodel.php. The manipulation of the argument id leads to sql injection. The attack can be launched remotely...