CVE-2024-7167

CVE-2024-7167 affects SourceCodester School Fees Payment System v1.0, with an SQL injection in the /manage_course.php file via the id parameter. The vulnerability is exploitable remotely and is described as critical; exploitation can lead to disclosure, modification, or damage of data due to inje...

CVE-2024-7167 SourceCodester School Fees Payment System manage_course.php sql injection

A vulnerability was found in SourceCodester School Fees Payment System 1.0. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /managecourse.php. The manipulation of the argument id leads to sql injection. The attack can be launched remotely...

CVE-2024-7165

A vulnerability was found in SourceCodester School Fees Payment System 1.0 and classified as critical. This issue affects some unknown processing of the file /viewpayment.php. The manipulation of the argument efid leads to sql injection. The attack may be initiated remotely. The exploit has been...

CVE-2024-7166

SourceCodester School Fees Payment System 1.0 contains a SQL injection in /receipt.php via the ef_id parameter. The vulnerability allows remote exploitation and is publicly disclosed. Affected component: the receipt.php handling logic; root cause: improper handling of ef_id leading to injection. ...

CVE-2024-7165 SourceCodester School Fees Payment System view_payment.php sql injection

A vulnerability was found in SourceCodester School Fees Payment System 1.0 and classified as critical. This issue affects some unknown processing of the file /viewpayment.php. The manipulation of the argument efid leads to sql injection. The attack may be initiated remotely. The exploit has been...

CVE-2024-7164 SourceCodester School Fees Payment System sql injection

A vulnerability has been found in SourceCodester School Fees Payment System 1.0 and classified as critical. This vulnerability affects unknown code of the file /ajax.php?action=login. The manipulation of the argument username leads to sql injection. The attack can be initiated remotely. The explo...

CVE-2024-7069

A vulnerability, which was classified as critical, has been found in SourceCodester Employee and Visitor Gate Pass Logging System 1.0. This issue affects some unknown processing of the file /employeegatepass/classes/Master.php?f=deletedepartment. The manipulation of the argument id leads to sql...

CVE-2024-7069

CVE-2024-7069 concerns the SourceCodester Employee and Visitor Gate Pass Logging System v1.0. Technical details from the provided documents show an SQL injection vulnerability in the code path handling /employee_gatepass/classes/Master.php?f=delete_department, triggered by manipulating the id arg...

CVE-2024-7069 SourceCodester Employee and Visitor Gate Pass Logging System sql injection

A vulnerability, which was classified as critical, has been found in SourceCodester Employee and Visitor Gate Pass Logging System 1.0. This issue affects some unknown processing of the file /employeegatepass/classes/Master.php?f=deletedepartment. The manipulation of the argument id leads to sql...

PT-2024-38066 · Sourcecodester · Sourcecodester Insurance Management System

Name of the Vulnerable Software and Affected Versions: SourceCodester Insurance Management System version 1.0 Description: A vulnerability was found in the system, affecting an unknown functionality of the file /E-Insurance/. The manipulation leads to a direct request. The attack can be launched...

CVE-2024-6969

A vulnerability was found in SourceCodester Clinics Patient Management System 1.0. It has been rated as critical. This issue affects some unknown processing of the file /ajax/getpatienthistory.php. The manipulation of the argument patientid leads to sql injection. The attack may be initiated...

CVE-2024-6968

A vulnerability was found in SourceCodester Clinics Patient Management System 1.0. It has been declared as critical. This vulnerability affects unknown code of the file /printpatientsvisits.php. The manipulation of the argument from/to leads to sql injection. The attack can be initiated remotely...

CVE-2024-6968 SourceCodester Clinics Patient Management System print_patients_visits.php sql injection

A vulnerability was found in SourceCodester Clinics Patient Management System 1.0. It has been declared as critical. This vulnerability affects unknown code of the file /printpatientsvisits.php. The manipulation of the argument from/to leads to sql injection. The attack can be initiated remotely...

CVE-2024-6967 SourceCodester Employee and Visitor Gate Pass Logging System sql injection

A vulnerability was found in SourceCodester Employee and Visitor Gate Pass Logging System 1.0. It has been classified as critical. This affects an unknown part of the file /employeegatepass/admin/?page=employee/manageemployee. The manipulation of the argument id leads to sql injection. It is...

CVE-2024-6967 SourceCodester Employee and Visitor Gate Pass Logging System sql injection

A vulnerability was found in SourceCodester Employee and Visitor Gate Pass Logging System 1.0. It has been classified as critical. This affects an unknown part of the file /employeegatepass/admin/?page=employee/manageemployee. The manipulation of the argument id leads to sql injection. It is...

CVE-2024-6955

A vulnerability was found in SourceCodester Record Management System 1.0. It has been classified as problematic. Affected is an unknown function of the file sort2.php. The manipulation of the argument qualification leads to cross site scripting. It is possible to launch the attack remotely. The...

CVE-2024-6954

A vulnerability was found in SourceCodester Record Management System 1.0. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the file sort1.php. The manipulation of the argument position leads to cross site scripting. The attack can be launched...

CVE-2024-6955 SourceCodester Record Management System sort2.php cross site scripting

A vulnerability was found in SourceCodester Record Management System 1.0. It has been classified as problematic. Affected is an unknown function of the file sort2.php. The manipulation of the argument qualification leads to cross site scripting. It is possible to launch the attack remotely. The...

CVE-2024-6954 SourceCodester Record Management System sort1.php cross site scripting

A vulnerability was found in SourceCodester Record Management System 1.0. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the file sort1.php. The manipulation of the argument position leads to cross site scripting. The attack can be launched...

CVE-2024-6951 SourceCodester Simple Online Book Store System admin_delete.php sql injection

A vulnerability, which was classified as critical, was found in SourceCodester Simple Online Book Store System 1.0. This affects an unknown part of the file admindelete.php. The manipulation of the argument bookisbn leads to sql injection. It is possible to initiate the attack remotely. The explo...