CVE-2024-6898 SourceCodester Record Management System index.php sql injection

A vulnerability was found in SourceCodester Record Management System 1.0. It has been classified as critical. This affects an unknown part of the file index.php. The manipulation of the argument UserName leads to sql injection. It is possible to initiate the attack remotely. The exploit has been...

CVE-2024-40402

A SQL injection vulnerability was found in 'ajax.php' of Sourcecodester Simple Library Management System 1.0. This vulnerability stems from insufficient user input validation of the 'username' parameter, allowing attackers to inject malicious SQL queries...

CVE-2024-40402

A SQL injection vulnerability was found in 'ajax.php' of Sourcecodester Simple Library Management System 1.0. This vulnerability stems from insufficient user input validation of the 'username' parameter, allowing attackers to inject malicious SQL queries...

CVE-2024-6830

A vulnerability, which was classified as critical, was found in SourceCodester Simple Inventory Management System 1.0. Affected is an unknown function of the file action.php of the component Order Handler. The manipulation of the argument orderid leads to sql injection. It is possible to launch t...

CVE-2024-6830 SourceCodester Simple Inventory Management System Order action.php sql injection

A vulnerability, which was classified as critical, was found in SourceCodester Simple Inventory Management System 1.0. Affected is an unknown function of the file action.php of the component Order Handler. The manipulation of the argument orderid leads to sql injection. It is possible to launch t...

CVE-2024-6807

A vulnerability was found in SourceCodester Student Study Center Desk Management System 1.0 and classified as problematic. Affected by this issue is some unknown functionality of the file /sscdms/classes/Users.php?f=save of the component HTTP POST Request Handler. The manipulation of the argument...

CVE-2024-6807 SourceCodester Student Study Center Desk Management System HTTP POST Request Users.php cross site scripting

A vulnerability was found in SourceCodester Student Study Center Desk Management System 1.0 and classified as problematic. Affected by this issue is some unknown functionality of the file /sscdms/classes/Users.php?f=save of the component HTTP POST Request Handler. The manipulation of the argument...

CVE-2024-6807 SourceCodester Student Study Center Desk Management System HTTP POST Request Users.php cross site scripting

A vulnerability was found in SourceCodester Student Study Center Desk Management System 1.0 and classified as problematic. Affected by this issue is some unknown functionality of the file /sscdms/classes/Users.php?f=save of the component HTTP POST Request Handler. The manipulation of the argument...

CVE-2024-6807

CVE-2024-6807 affects SourceCodester Student Study Center Desk Management System 1.0. The vulnerability exists in the HTTP POST handler at /sscdms/classes/Users.php?f=save, where manipulating the arguments firstname, middlename, lastname, or username triggers a cross-site scripting (XSS) flaw. Th...

CVE-2024-6802

A vulnerability, which was classified as critical, was found in SourceCodester Computer Laboratory Management System 1.0. Affected is an unknown function of the file /lms/classes/Master.php?f=saverecord. The manipulation of the argument id leads to sql injection. It is possible to launch the atta...

CVE-2024-6801

A vulnerability, which was classified as critical, has been found in SourceCodester Online Student Management System 1.0. This issue affects some unknown processing of the file /add-students.php. The manipulation of the argument image leads to unrestricted upload. The attack may be initiated...

CVE-2024-6802 SourceCodester Computer Laboratory Management System Master.php sql injection

A vulnerability, which was classified as critical, was found in SourceCodester Computer Laboratory Management System 1.0. Affected is an unknown function of the file /lms/classes/Master.php?f=saverecord. The manipulation of the argument id leads to sql injection. It is possible to launch the atta...

CVE-2024-6802

The CVE-2024-6802 entry concerns SourceCodester Computer Laboratory Management System 1.0. A vulnerable point is the function in /lms/classes/Master.php?f=save_record where manipulating the id parameter leads to SQL injection. Exploitation can be performed remotely, and public exploits have been ...

CVE-2024-6802 SourceCodester Computer Laboratory Management System Master.php sql injection

A vulnerability, which was classified as critical, was found in SourceCodester Computer Laboratory Management System 1.0. Affected is an unknown function of the file /lms/classes/Master.php?f=saverecord. The manipulation of the argument id leads to sql injection. It is possible to launch the atta...

CVE-2024-40402

A SQL injection vulnerability was found in 'ajax.php' of Sourcecodester Simple Library Management System 1.0. This vulnerability stems from insufficient user input validation of the 'username' parameter, allowing attackers to inject malicious SQL queries...

CVE-2024-40402

Affected software: Sourcecodester Simple Library Management System 1.0. A SQL injection vulnerability exists in the ajax.php file due to insufficient input validation of the username parameter, enabling attackers to inject malicious SQL queries. Root cause: improper validation of user input in us...

CVE-2024-40402

A SQL injection vulnerability was found in 'ajax.php' of Sourcecodester Simple Library Management System 1.0. This vulnerability stems from insufficient user input validation of the 'username' parameter, allowing attackers to inject malicious SQL queries...

PT-2024-28829 · Unknown · Sourcecodester Library Management System

Name of the Vulnerable Software and Affected Versions: Sourcecodester Simple Library Management System version 1.0 Description: A SQL injection issue was discovered due to insufficient validation of user input for the username parameter in the "ajax.php" file. This allows attackers to inject...

CVE-2024-40392

SourceCodester Pharmacy/Medical Store Point of Sale System Using PHP/MySQL and Bootstrap Framework with Source Code 1.0 was discovered to contain a SQL injection vulnerability via the name parameter under addnew.php...

CVE-2024-40392

SourceCodester Pharmacy/Medical Store Point of Sale System Using PHP/MySQL and Bootstrap Framework with Source Code 1.0 was discovered to contain a SQL injection vulnerability via the name parameter under addnew.php...