Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

16049 matches found

NVD
NVDadded 2024/10/24 7:15 p.m.14 views

CVE-2024-48454

An issue in SourceCodester Purchase Order Management System v1.0 allows a remote attacker to execute arbitrary code via the /admin?page=user component...

7.2CVSS0.02659EPSS
Exploits0References3
OSV
OSVadded 2024/10/24 5:15 p.m.1 views

CVE-2024-10335

A vulnerability was found in SourceCodester Garbage Collection Management System 1.0. It has been declared as critical. This vulnerability affects unknown code of the file login.php. The manipulation of the argument username/password leads to sql injection. The attack can be initiated remotely. T...

9.8CVSS6.8AI score
Exploits0References5
NVD
NVDadded 2024/10/24 5:15 p.m.10 views

CVE-2024-10335

A vulnerability was found in SourceCodester Garbage Collection Management System 1.0. It has been declared as critical. This vulnerability affects unknown code of the file login.php. The manipulation of the argument username/password leads to sql injection. The attack can be initiated remotely. T...

9.8CVSS0.0012EPSS
Exploits1References5
CVE
CVEadded 2024/10/24 4:31 p.m.43 views

CVE-2024-10335

CVE-2024-10335 affects SourceCodester Garbage Collection Management System 1.0. The vulnerability resides in the login.php code, where manipulation of the username and potentially password parameters leads to an SQL injection. Exploitation is described as remote, with public disclosure of the exp...

9.8CVSS7.7AI score0.0012EPSS
Exploits1References5Affected Software1
Vulnrichment
Vulnrichmentadded 2024/10/24 4:31 p.m.10 views

CVE-2024-10335 SourceCodester Garbage Collection Management System login.php sql injection

A vulnerability was found in SourceCodester Garbage Collection Management System 1.0. It has been declared as critical. This vulnerability affects unknown code of the file login.php. The manipulation of the argument username/password leads to sql injection. The attack can be initiated remotely. T...

7.5CVSS9.7AI score0.0012EPSS
Exploits1References5
Cvelist
Cvelistadded 2024/10/24 4:31 p.m.15 views

CVE-2024-10335 SourceCodester Garbage Collection Management System login.php sql injection

A vulnerability was found in SourceCodester Garbage Collection Management System 1.0. It has been declared as critical. This vulnerability affects unknown code of the file login.php. The manipulation of the argument username/password leads to sql injection. The attack can be initiated remotely. T...

7.5CVSS0.0012EPSS
Exploits1References5
CNNVD
CNNVDadded 2024/10/24 12:0 a.m.1 views

SourceCodester Best House Rental Management System SQL注入漏洞

SourceCodester Best House Rental Management System is a house rental management system from SourceCodester. A SQL injection vulnerability exists in SourceCodester Best House Rental Management System version 1.0, which stems from improper manipulation of the parameter id that can lead to SQL...

9.8CVSS7.1AI score0.00076EPSS
Exploits1References5
Positive Technologies
Positive Technologiesadded 2024/10/24 12:0 a.m.2 views

PT-2024-16207 · Sourcecodester · Sourcecodester Best House Rental Management System

Name of the Vulnerable Software and Affected Versions: SourceCodester Best House Rental Management System version 1.0 Description: A critical issue was found in the function delete tenant of the file "/ajax.php?action=delete tenant". The manipulation of the argument id leads to SQL injection. The...

9.8CVSS8.4AI score0.00076EPSS
Exploits1References9
Cvelist
Cvelistadded 2024/10/24 12:0 a.m.15 views

CVE-2024-48427

A SQL injection vulnerability in Sourcecodester Packers and Movers Management System v1.0 allows remote authenticated users to execute arbitrary SQL commands via the id parameter in /mpms/admin/?page=services/manageservice&id...

0.17155EPSS
Exploits0References2
CVE
CVEadded 2024/10/24 12:0 a.m.69 views

CVE-2024-48454

CVE-2024-48454 targets SourceCodester Purchase Order Management System v1.0, allowing remote code execution via the /admin?page=user component. Multiple connected feeds (Red Hat, NVD, CVEs list, CNNVD, PT-Security) corroborate an RCE risk in the admin page, with confirmed affected software/versio...

7.2CVSS7.9AI score0.02659EPSS
Exploits0References3Affected Software1
Cvelist
Cvelistadded 2024/10/24 12:0 a.m.16 views

CVE-2024-48454

An issue in SourceCodester Purchase Order Management System v1.0 allows a remote attacker to execute arbitrary code via the /admin?page=user component...

0.02659EPSS
Exploits0References3
CNNVD
CNNVDadded 2024/10/24 12:0 a.m.2 views

SourceCodester Purchase Order Management System 安全漏洞

Sourcecodester Purchase Order Management System is a simple purchase order management system used to manage the purchase order records of a particular company. A security vulnerability exists in SourceCodester Purchase Order Management System version v1.0, which originated from a vulnerability th...

7.2CVSS7.8AI score0.02659EPSS
Exploits0References3
Vulnrichment
Vulnrichmentadded 2024/10/24 12:0 a.m.14 views

CVE-2024-48427

A SQL injection vulnerability in Sourcecodester Packers and Movers Management System v1.0 allows remote authenticated users to execute arbitrary SQL commands via the id parameter in /mpms/admin/?page=services/manageservice&id...

8.3AI score0.17155EPSS
Exploits0References2
CNNVD
CNNVDadded 2024/10/24 12:0 a.m.1 views

SourceCodester Garbage Collection Management System SQL注入漏洞

SourceCodester Garbage Collection Management System is a SourceCodester open source garbage collection management system. A SQL injection vulnerability exists in SourceCodester Garbage Collection Management System version 1.0, which is caused by improper handling of username/password parameters i...

9.8CVSS7.9AI score0.0012EPSS
Exploits1References5
Positive Technologies
Positive Technologiesadded 2024/10/24 12:0 a.m.3 views

PT-2024-16212 · Unknown · Sourcecodester Online Exam System

Name of the Vulnerable Software and Affected Versions: SourceCodester Online Exam System version 1.0 Description: A critical issue has been discovered, affecting an unknown function of the file /admin-dashboard, leading to improper access controls. This issue can be exploited remotely...

7.2CVSS6.9AI score0.00131EPSS
Exploits1References8
Positive Technologies
Positive Technologiesadded 2024/10/24 12:0 a.m.2 views

PT-2024-33118 · Sourcecodester · Sourcecodester Purchase Order Management System

Name of the Vulnerable Software and Affected Versions: SourceCodester Purchase Order Management System version 1.0 Description: The issue allows a remote attacker to execute arbitrary code via the "admin?page=user" component. This enables the attacker to potentially gain control over the system,...

7.2CVSS8AI score0.02659EPSS
Exploits0References7
Vulnrichment
Vulnrichmentadded 2024/10/24 12:0 a.m.16 views

CVE-2024-48454

An issue in SourceCodester Purchase Order Management System v1.0 allows a remote attacker to execute arbitrary code via the /admin?page=user component...

7.9AI score0.02659EPSS
Exploits0References3
NVD
NVDadded 2024/10/20 2:15 a.m.14 views

CVE-2024-10163

A vulnerability was found in SourceCodester Sentiment Based Movie Rating System 1.0. It has been classified as critical. Affected is an unknown function of the file /msrps/moviedetails.php. The manipulation of the argument id leads to sql injection. It is possible to launch the attack remotely. T...

9.8CVSS0.00097EPSS
Exploits1References5
OSV
OSVadded 2024/10/20 2:15 a.m.1 views

CVE-2024-10163

A vulnerability was found in SourceCodester Sentiment Based Movie Rating System 1.0. It has been classified as critical. Affected is an unknown function of the file /msrps/moviedetails.php. The manipulation of the argument id leads to sql injection. It is possible to launch the attack remotely. T...

9.8CVSS5.7AI score
Exploits0References5
Cvelist
Cvelistadded 2024/10/20 1:31 a.m.19 views

CVE-2024-10163 SourceCodester Sentiment Based Movie Rating System movie_details.php sql injection

A vulnerability was found in SourceCodester Sentiment Based Movie Rating System 1.0. It has been classified as critical. Affected is an unknown function of the file /msrps/moviedetails.php. The manipulation of the argument id leads to sql injection. It is possible to launch the attack remotely. T...

6.5CVSS0.00097EPSS
Exploits1References5
Rows per page
Query Builder