CVE-2024-51030

Sourcecodester Cab Management System 1.0 has a SQL injection in manage_client.php and view_cab.php that can be exploited via the id parameter to execute arbitrary SQL. Affected scripts: manage_client.php, view_cab.php. Root cause: unsanitized id parameter enabling SQL injection with high confiden...

CVE-2024-51030

A SQL injection vulnerability in manageclient.php and viewcab.php of Sourcecodester Cab Management System 1.0 allows remote attackers to execute arbitrary SQL commands via the id parameter, leading to unauthorized access and potential compromise of sensitive data within the database...

CVE-2024-51032

A Cross-site Scripting XSS vulnerability in managerecipient.php of Sourcecodester Toll Tax Management System 1.0 allows remote authenticated users to inject arbitrary web scripts via the "owner" input field...

CVE-2024-51031

A Cross-site Scripting XSS vulnerability in manageaccount.php in Sourcecodester Cab Management System 1.0 allows remote authenticated users to inject arbitrary web scripts via the "First Name," "Middle Name," and "Last Name" fields...

CVE-2024-51031

A Cross-site Scripting XSS vulnerability in manageaccount.php in Sourcecodester Cab Management System 1.0 allows remote authenticated users to inject arbitrary web scripts via the "First Name," "Middle Name," and "Last Name" fields...

CVE-2024-51032

A Cross-site Scripting XSS vulnerability in managerecipient.php of Sourcecodester Toll Tax Management System 1.0 allows remote authenticated users to inject arbitrary web scripts via the "owner" input field...

CVE-2024-51031

CVE-2024-51031 affects Sourcecodester Cab Management System 1.0. A cross-site scripting (XSS) vulnerability exists in manage_account.php allowing remote authenticated users to inject arbitrary scripts via the First Name, Middle Name, and Last Name fields. The issue is documented across multiple f...

CVE-2024-51032

CVE-2024-51032 affects Sourcecodester Toll Tax Management System 1.0. The vulnerability is a Cross-site Scripting (XSS) in the file manage_recipient.php, exploitable by remote authenticated users via the owner input field. According to the sources, the impact is XSS with potential script injectio...

CVE-2024-50766

SourceCodester Survey Application System 1.0 is vulnerable to SQL Injection in takeSurvey.php via the id parameter...

CVE-2024-50766

SourceCodester Survey Application System 1.0 is vulnerable to SQL Injection in takeSurvey.php via the id parameter...

CVE-2024-50766

SourceCodester Survey Application System 1.0 is vulnerable to SQL Injection in takeSurvey.php via the id parameter...

PT-2024-34407 · Sourcecodester · Sourcecodester Survey Application System

Name of the Vulnerable Software and Affected Versions: SourceCodester Survey Application System version 1.0 Description: The issue is related to SQL Injection in the takeSurvey.php file via the id parameter. This allows for potential exploitation. Recommendations: For SourceCodester Survey...

CVE-2024-50766

SourceCodester Survey Application System 1.0 is vulnerable to SQL Injection in takeSurvey.php via the id parameter...

CVE-2024-50766

CVE-2024-50766 affects SourceCodester Survey Application System 1.0. The flaw is a SQL Injection in takeSurvey.php via the id parameter, allowing unauthenticated network-accessible exploitation with high impact (C/H, I/H, A/H) per CVSS 3.1: 9.8. Documented by Red Hat, NVD, CIRCL and others; PT-Se...

SourceCodester Survey Application System 安全漏洞

SourceCodester Survey Application System is an open source survey application system from SourceCodester. A security vulnerability exists in SourceCodester Survey Application System version 1.0, which originates from an SQL injection vulnerability in the id parameter of the takeSurvey.php page...

PT-2024-34497 · Sourcecodester · Sourcecodester Loan Management System

Name of the Vulnerable Software and Affected Versions: Sourcecodester Cab Management System version 1.0 Description: A Cross-site Scripting XSS issue in manage account.php allows remote authenticated users to inject arbitrary web scripts via the First Name, Middle Name, and Last Name fields...

CVE-2024-10559

A vulnerability was found in SourceCodester Airport Booking Management System 1.0 and classified as critical. Affected by this issue is the function Details. The manipulation of the argument passport/name leads to buffer overflow. The attack needs to be approached locally. The exploit has been...

CVE-2024-10559 SourceCodester Airport Booking Management System Passport Number details buffer overflow

A vulnerability was found in SourceCodester Airport Booking Management System 1.0 and classified as critical. Affected by this issue is the function details of the component Passport Number Handler. The manipulation leads to buffer overflow. The attack needs to be approached locally. The exploit...

CVE-2024-10559

SourceCodester Airport Booking Management System 1.0 contains a buffer overflow in the Details/Passport Number Handler component. The vulnerability is exploitable with local access; the attacker can manipulate passport/name inputs to overflow buffers. The issue has been publicly disclosed and may...

CVE-2024-10559 SourceCodester Airport Booking Management System details buffer overflow

A vulnerability was found in SourceCodester Airport Booking Management System 1.0 and classified as critical. Affected by this issue is the function Details. The manipulation of the argument passport/name leads to buffer overflow. The attack needs to be approached locally. The exploit has been...