SourceCodester Student Record Management System 安全漏洞

SourceCodester Student Record Management System is an open source student record management system from SourceCodester. A security vulnerability exists in SourceCodester Student Record Management System version 1.0, which originates from an error that can lead to an infinite loop...

CVE-2024-11073

A vulnerability classified as problematic has been found in SourceCodester Hospital Management System 1.0. This affects an unknown part of the file /vm/patient/delete-account.php. The manipulation of the argument id leads to improper authorization. It is possible to initiate the attack remotely...

CVE-2024-11073

SourceCodester Hospital Management System 1.0 contains an IDOR-like issue in /vm/patient/delete-account.php where manipulation of the id parameter allows improper authorization. The vulnerability can be exploited remotely and exploits have been disclosed publicly. No patch/version specifics are p...

CVE-2024-11073 SourceCodester Hospital Management System delete-account.php improper authorization

A vulnerability classified as problematic has been found in SourceCodester Hospital Management System 1.0. This affects an unknown part of the file /vm/patient/delete-account.php. The manipulation of the argument id leads to improper authorization. It is possible to initiate the attack remotely...

CVE-2024-11073 SourceCodester Hospital Management System delete-account.php improper authorization

A vulnerability classified as problematic has been found in SourceCodester Hospital Management System 1.0. This affects an unknown part of the file /vm/patient/delete-account.php. The manipulation of the argument id leads to improper authorization. It is possible to initiate the attack remotely...

PT-2024-16764 · Sourcecodester · Sourcecodester Hospital Management System

Name of the Vulnerable Software and Affected Versions: SourceCodester Hospital Management System version 1.0 Description: A high-severity issue affects the SourceCodester Hospital Management System, where the manipulation of the name argument in the /vm/doctor/edit-doc.php file leads to cross-sit...

CVE-2024-11054

A vulnerability classified as critical was found in SourceCodester Simple Music Cloud Community System 1.0. This vulnerability affects unknown code of the file /music/ajax.php?action=signup. The manipulation of the argument pp leads to unrestricted upload. The attack can be initiated remotely. Th...

CVE-2024-11054 SourceCodester Simple Music Cloud Community System ajax.php unrestricted upload

A vulnerability classified as critical was found in SourceCodester Simple Music Cloud Community System 1.0. This vulnerability affects unknown code of the file /music/ajax.php?action=signup. The manipulation of the argument pp leads to unrestricted upload. The attack can be initiated remotely. Th...

CVE-2024-11054 SourceCodester Simple Music Cloud Community System ajax.php unrestricted upload

A vulnerability classified as critical was found in SourceCodester Simple Music Cloud Community System 1.0. This vulnerability affects unknown code of the file /music/ajax.php?action=signup. The manipulation of the argument pp leads to unrestricted upload. The attack can be initiated remotely. Th...

CVE-2024-11054

CVE-2024-11054 affects SourceCodester Simple Music Cloud Community System 1.0, specifically the endpoint /music/ajax.php?action=signup where the argument/parameter named pp can be manipulated to achieve an unrestricted file upload. The vulnerability is remotely exploitable and was publicly disclo...

PT-2024-16727 · Unknown · Sourcecodester Simple Music Cloud Community System

Name of the Vulnerable Software and Affected Versions: SourceCodester Simple Music Cloud Community System version 1.0 Description: A critical vulnerability was found in the SourceCodester Simple Music Cloud Community System. This issue affects unknown code of the file /music/ajax.php?action=signu...

SourceCodester Simple Music Cloud Community System 代码问题漏洞

SourceCodester Simple Music Cloud Community System is a SourceCodester open source simple music cloud community system. A code issue vulnerability exists in version 1.0 of the SourceCodester Simple Music Cloud Community System, which stems from the parameter pp in the file...

CVE-2024-51031

A Cross-site Scripting XSS vulnerability in manageaccount.php in Sourcecodester Cab Management System 1.0 allows remote authenticated users to inject arbitrary web scripts via the "First Name," "Middle Name," and "Last Name" fields...

CVE-2024-51032

A Cross-site Scripting XSS vulnerability in managerecipient.php of Sourcecodester Toll Tax Management System 1.0 allows remote authenticated users to inject arbitrary web scripts via the "owner" input field...

CVE-2024-10990

A vulnerability classified as critical was found in SourceCodester Online Veterinary Appointment System 1.0. This vulnerability affects unknown code of the file /admin/services/viewservice.php. The manipulation of the argument id leads to sql injection. The attack can be initiated remotely. The...

CVE-2024-10990

A vulnerability classified as critical was found in SourceCodester Online Veterinary Appointment System 1.0. This vulnerability affects unknown code of the file /admin/services/viewservice.php. The manipulation of the argument id leads to sql injection. The attack can be initiated remotely. The...

CVE-2024-10990

CVE-2024-10990 affects SourceCodester Online Veterinary Appointment System 1.0; /admin/services/view_service.php vulnerability arises from unsafely handling the id parameter, enabling SQL injection. A remote attacker can exploit this; the exploit has been publicly disclosed. Mitigations are not c...

CVE-2024-10990 SourceCodester Online Veterinary Appointment System view_service.php sql injection

A vulnerability classified as critical was found in SourceCodester Online Veterinary Appointment System 1.0. This vulnerability affects unknown code of the file /admin/services/viewservice.php. The manipulation of the argument id leads to sql injection. The attack can be initiated remotely. The...

CVE-2024-10990 SourceCodester Online Veterinary Appointment System view_service.php sql injection

A vulnerability classified as critical was found in SourceCodester Online Veterinary Appointment System 1.0. This vulnerability affects unknown code of the file /admin/services/viewservice.php. The manipulation of the argument id leads to sql injection. The attack can be initiated remotely. The...

SourceCodester Online Veterinary Appointment System 注入漏洞

SourceCodester Online Veterinary Appointment System is a SourceCodester open source online veterinary appointment system. An injection vulnerability exists in SourceCodester Online Veterinary Appointment System version 1.0, which stems from the parameter id of the file...