CVE-2022-2814

A vulnerability has been found in SourceCodester Simple and Nice Shopping Cart Script and classified as problematic. Affected by this vulnerability is an unknown functionality of the file /mkshope/login.php. The manipulation of the argument msg leads to cross site scripting. The attack can be...

CVE-2022-2811

A vulnerability classified as problematic has been found in SourceCodester Guest Management System. This affects an unknown part of the file myform.php. The manipulation of the argument name leads to cross site scripting. It is possible to initiate the attack remotely. The exploit has been...

CVE-2022-2812

A vulnerability classified as critical was found in SourceCodester Guest Management System. This vulnerability affects unknown code of the file index.php. The manipulation of the argument username/pass leads to sql injection. The attack can be initiated remotely. The exploit has been disclosed to...

Design/Logic Flaw

A vulnerability, which was classified as problematic, was found in SourceCodester Guest Management System. Affected is an unknown function. The manipulation leads to cleartext storage of passwords in the database. The identifier of this vulnerability is VDB-206400...

Sql injection

A vulnerability classified as critical was found in SourceCodester Guest Management System. This vulnerability affects unknown code of the file index.php. The manipulation of the argument username/pass leads to sql injection. The attack can be initiated remotely. The exploit has been disclosed to...

Cross site scripting

A vulnerability has been found in SourceCodester Simple and Nice Shopping Cart Script and classified as problematic. Affected by this vulnerability is an unknown functionality of the file /mkshope/login.php. The manipulation of the argument msg leads to cross site scripting. The attack can be...

CVE-2022-2814

The CVE-2022-2814 entry relates to SourceCodester Simple and Nice Shopping Cart Script. Affected component: the /mkshope/login.php functionality where manipulating the msg argument leads to cross-site scripting. Documents consistently state the attack can be launched remotely and that the exploit...

CVE-2022-2813 SourceCodester Guest Management System cleartext storage

A vulnerability, which was classified as problematic, was found in SourceCodester Guest Management System. Affected is an unknown function. The manipulation leads to cleartext storage of passwords in the database. The identifier of this vulnerability is VDB-206400...

CVE-2022-2813

CVE-2022-2813 affects the SourceCodester Guest Management System. The vulnerability is described as a problem in an unknown function that leads to cleartext storage of passwords in the database. Several connected sources reiterate this issue without providing product versions or exploitation deta...

CVE-2022-2812

CVE-2022-2812 affects SourceCodester Guest Management System, specifically the index.php component. The root cause is manipulation of the username/pass parameters that enables SQL injection, which can be triggered remotely. The vulnerability is described as critical (high impact to confidentialit...

CVE-2022-2811

CVE-2022-2811 affects SourceCodester Guest Management System, specifically an unknown portion of myform.php where manipulating the name parameter enables cross-site scripting. The vulnerability can be triggered remotely and the exploit has been disclosed publicly. Several connected records corrob...

PT-2022-18824 · Sourcecodester · Sourcecodester Guest Management System

Name of the Vulnerable Software and Affected Versions: SourceCodester Guest Management System affected versions not specified Description: A critical issue was found in the SourceCodester Guest Management System, affecting the file index.php. The manipulation of the username/pass argument leads t...

Design/Logic Flaw

A vulnerability was found in SourceCodester Zoo Management System. It has been classified as critical. Affected is an unknown function of the file /pages/applyvacancy.php. The manipulation of the argument filename leads to unrestricted upload. It is possible to launch the attack remotely. The...

Sql injection

A vulnerability was found in SourceCodester Zoo Management System and classified as critical. This issue affects some unknown processing of the file /pages/animals.php. The manipulation of the argument classid leads to sql injection. The attack may be initiated remotely. The exploit has been...

CVE-2022-2804

SourceCodester Zoo Management System contains a vulnerability in an unknown function of the file /pages/apply_vacancy.php where modifying the filename argument enables unrestricted file upload. This allows remote exploitation, with public disclosure of the exploit noted. Several sources consisten...

CVE-2022-2802

SourceCodester Gas Agency Management System is affected; the vulnerability exists in gasmark/login.php where manipulating the username parameter triggers a SQL injection. It can be exploited remotely and the exploit has been disclosed publicly. Affected component/file: gasmark/login.php (unknown ...

CVE-2022-2801 SourceCodester Automated Beer Parlour Billing System Login sql injection

A vulnerability, which was classified as critical, was found in SourceCodester Automated Beer Parlour Billing System. This affects an unknown part of the component Login. The manipulation of the argument username leads to sql injection. It is possible to initiate the attack remotely. The associat...

CVE-2022-2801

CVE-2022-2801 affects SourceCodester Automated Beer Parlour Billing System (Login component). The vulnerability arises from input manipulation of the username parameter, enabling SQL injection that can be triggered remotely. Affected details across sources indicate an exploitable SQL injection in...

CVE-2022-2800 SourceCodester Gym Management System clickjacking

A vulnerability, which was classified as problematic, has been found in SourceCodester Gym Management System. Affected by this issue is some unknown functionality. The manipulation leads to clickjacking. The attack may be launched remotely. The exploit has been disclosed to the public and may be...

CVE-2022-2797

A vulnerability classified as critical was found in SourceCodester Student Information System. Affected by this vulnerability is an unknown functionality of the file /admin/students/viewstudent.php. The manipulation of the argument id leads to sql injection. The attack can be launched remotely. T...