CVE-2024-10354 SourceCodester Petrol Pump Management Software print.php sql injection

A vulnerability classified as critical was found in SourceCodester Petrol Pump Management Software 1.0. Affected by this vulnerability is an unknown functionality of the file /admin/print.php. The manipulation of the argument id leads to sql injection. The attack can be launched remotely. The...

CVE-2024-10354

CVE-2024-10354 affects SourceCodester Petrol Pump Management Software v1.0. The issue is in the file /admin/print.php where manipulating the id parameter enables a SQL injection, with remote attack capability and public exploitation disclosure. Multiple connected sources confirm the vulnerability...

CVE-2024-10354 SourceCodester Petrol Pump Management Software print.php sql injection

A vulnerability classified as critical was found in SourceCodester Petrol Pump Management Software 1.0. Affected by this vulnerability is an unknown functionality of the file /admin/print.php. The manipulation of the argument id leads to sql injection. The attack can be launched remotely. The...

SourceCodester Payroll Management System 安全漏洞

SourceCodester Payroll Management System is an open source payroll management system from SourceCodester. A security vulnerability exists in SourceCodester Payroll Management System version 1.0. An attacker exploiting this vulnerability could cause a buffer overflow...

PT-2024-16225 · Sourcecodester · Itsourcecode Payroll Management System

Name of the Vulnerable Software and Affected Versions: SourceCodester Payroll Management System version 1.0 Description: A critical issue has been found in the login function of the main file, leading to a buffer overflow. The exploit has been disclosed to the public and may be used...

SourceCodester Best House Rental Management System 安全漏洞

SourceCodester Best House Rental Management System is a house rental management system from SourceCodester, Inc. A security vulnerability exists in SourceCodester Best House Rental Management System version v.1.0. A remote attacker can exploit this vulnerability to execute arbitrary code via the...

CVE-2024-10353

CVE-2024-10353 affects SourceCodester Online Exam System 1.0, with an unknown function in /admin-dashboard enabling improper access controls. Documents consistently state remote exploitation is possible and public exploits exist. Several sources (NVD, Red Hat, CVE lists, Vuln enrichment, PT Secur...

CVE-2024-10353 SourceCodester Online Exam System admin-dashboard access control

A vulnerability classified as critical has been found in SourceCodester Online Exam System 1.0. Affected is an unknown function of the file /admin-dashboard. The manipulation leads to improper access controls. It is possible to launch the attack remotely. The exploit has been disclosed to the...

CVE-2024-10353 SourceCodester Online Exam System admin-dashboard access control

A vulnerability classified as critical has been found in SourceCodester Online Exam System 1.0. Affected is an unknown function of the file /admin-dashboard. The manipulation leads to improper access controls. It is possible to launch the attack remotely. The exploit has been disclosed to the...

CVE-2024-10348

A vulnerability was found in SourceCodester Best House Rental Management System 1.0. It has been classified as problematic. This affects an unknown part of the file /index.php?page=tenants of the component Manage Tenant Details. The manipulation of the argument Last Name/First Name/Middle Name...

CVE-2024-10349

A vulnerability was found in SourceCodester Best House Rental Management System 1.0 and classified as critical. Affected by this issue is the function deletetenant of the file /ajax.php?action=deletetenant. The manipulation of the argument id leads to sql injection. The attack may be launched...

CVE-2024-10349 SourceCodester Best House Rental Management System ajax.php delete_tenant sql injection

A vulnerability was found in SourceCodester Best House Rental Management System 1.0 and classified as critical. Affected by this issue is the function deletetenant of the file /ajax.php?action=deletetenant. The manipulation of the argument id leads to sql injection. The attack may be launched...

CVE-2024-10349

CVE-2024-10349 affects SourceCodester Best House Rental Management System v1.0. The vulnerability is in the function delete_tenant (ajax.php?action=delete_tenant) where the id parameter can be manipulated to trigger SQL injection. Exploitation could be remote; public disclosure is noted. Root cau...

CVE-2024-10349 SourceCodester Best House Rental Management System ajax.php delete_tenant sql injection

A vulnerability was found in SourceCodester Best House Rental Management System 1.0 and classified as critical. Affected by this issue is the function deletetenant of the file /ajax.php?action=deletetenant. The manipulation of the argument id leads to sql injection. The attack may be launched...

CVE-2024-10348 SourceCodester Best House Rental Management System Manage Tenant Details index.php cross site scripting

A vulnerability was found in SourceCodester Best House Rental Management System 1.0. It has been classified as problematic. This affects an unknown part of the file /index.php?page=tenants of the component Manage Tenant Details. The manipulation of the argument Last Name/First Name/Middle Name...

CVE-2024-10348

CVE-2024-10348 affects SourceCodester Best House Rental Management System v1.0, specifically the Manage Tenant Details path (/index.php?page=tenants). The root cause is input manipulation in the Last Name/First Name/Middle Name fields that enables cross-site scripting (XSS). Exploitation is descr...

CVE-2024-10348 SourceCodester Best House Rental Management System Manage Tenant Details index.php cross site scripting

A vulnerability was found in SourceCodester Best House Rental Management System 1.0. It has been classified as problematic. This affects an unknown part of the file /index.php?page=tenants of the component Manage Tenant Details. The manipulation of the argument Last Name/First Name/Middle Name...

CVE-2024-48454

An issue in SourceCodester Purchase Order Management System v1.0 allows a remote attacker to execute arbitrary code via the /admin?page=user component...

CVE-2024-48427

A SQL injection vulnerability in Sourcecodester Packers and Movers Management System v1.0 allows remote authenticated users to execute arbitrary SQL commands via the id parameter in /mpms/admin/?page=services/manageservice&id...

CVE-2024-48427

A SQL injection vulnerability in Sourcecodester Packers and Movers Management System v1.0 allows remote authenticated users to execute arbitrary SQL commands via the id parameter in /mpms/admin/?page=services/manageservice&id...