16049 matches found
CVE-2024-10163
CVE-2024-10163 affects SourceCodester Sentiment Based Movie Rating System 1.0. Affected component: the function in /msrps/movie_details.php where the id parameter is manipulated, leading to SQL injection. Attack can be launched remotely and the exploit has been disclosed publicly. Connected sourc...
CVE-2024-10163 SourceCodester Sentiment Based Movie Rating System movie_details.php sql injection
A vulnerability was found in SourceCodester Sentiment Based Movie Rating System 1.0. It has been classified as critical. Affected is an unknown function of the file /msrps/moviedetails.php. The manipulation of the argument id leads to sql injection. It is possible to launch the attack remotely. T...
SourceCodester Sentiment Based Movie Rating System SQL注入漏洞
SourceCodester Sentiment Based Movie Rating System is an open source movie rating system from SourceCodester. A SQL injection vulnerability exists in SourceCodester Sentiment Based Movie Rating System version 1.0, which stems from an incorrect manipulation of the parameter id that can lead to sql...
PT-2024-16076 · Unknown · Sourcecodester Sentiment Based Movie Rating System
Name of the Vulnerable Software and Affected Versions: SourceCodester Sentiment Based Movie Rating System version 1.0 Description: A critical issue has been found, allowing for SQL injection through the manipulation of the id argument in an unknown function of the file /msrps/movie details.php...
CVE-2024-9975
A vulnerability was found in SourceCodester Drag and Drop Image Upload 1.0. It has been rated as critical. Affected by this issue is some unknown functionality of the file /upload.php. The manipulation leads to unrestricted upload. The attack may be launched remotely. The exploit has been disclos...
CVE-2024-9975
A vulnerability was found in SourceCodester Drag and Drop Image Upload 1.0. It has been rated as critical. Affected by this issue is some unknown functionality of the file /upload.php. The manipulation leads to unrestricted upload. The attack may be launched remotely. The exploit has been disclos...
CVE-2024-9975 SourceCodester Drag and Drop Image Upload upload.php unrestricted upload
A vulnerability was found in SourceCodester Drag and Drop Image Upload 1.0. It has been rated as critical. Affected by this issue is some unknown functionality of the file /upload.php. The manipulation leads to unrestricted upload. The attack may be launched remotely. The exploit has been disclos...
CVE-2024-9975
CVE-2024-9975 concerns SourceCodester Drag and Drop Image Upload 1.0. The issue is an unrestricted file upload in the vulnerable code path, specifically the /upload.php functionality. Descriptions from multiple sources state the vulnerability can be triggered remotely and that the upload manipula...
CVE-2024-9975 SourceCodester Drag and Drop Image Upload upload.php unrestricted upload
A vulnerability was found in SourceCodester Drag and Drop Image Upload 1.0. It has been rated as critical. Affected by this issue is some unknown functionality of the file /upload.php. The manipulation leads to unrestricted upload. The attack may be launched remotely. The exploit has been disclos...
CVE-2024-9973
A vulnerability was found in SourceCodester Online Eyewear Shop 1.0. It has been classified as critical. Affected is an unknown function of the file /admin/?page=reports of the component Report Viewing Page. The manipulation of the argument date leads to sql injection. It is possible to launch th...
CVE-2024-9974
A vulnerability was found in SourceCodester Online Eyewear Shop 1.0. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file classes/Master.php?f=addtocard of the component POST Request Handler. The manipulation of the argument productid leads to s...
CVE-2024-9974
A vulnerability was found in SourceCodester Online Eyewear Shop 1.0. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file classes/Master.php?f=addtocard of the component POST Request Handler. The manipulation of the argument productid leads to s...
CVE-2024-9974
The CVE-2024-9974 entry concerns SourceCodester Online Eyewear Shop 1.0. Affected functionality is in the POST Request Handler, specifically the file classes/Master.php?f=add_to_card, where manipulating the product_id parameter leads to SQL injection. Remote exploitation is possible and public ex...
CVE-2024-9974 SourceCodester Online Eyewear Shop POST Request Master.php sql injection
A vulnerability was found in SourceCodester Online Eyewear Shop 1.0. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file classes/Master.php?f=addtocard of the component POST Request Handler. The manipulation of the argument productid leads to s...
CVE-2024-9974 SourceCodester Online Eyewear Shop POST Request Master.php sql injection
A vulnerability was found in SourceCodester Online Eyewear Shop 1.0. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file classes/Master.php?f=addtocard of the component POST Request Handler. The manipulation of the argument productid leads to s...
CVE-2024-9973 SourceCodester Online Eyewear Shop Report Viewing Page page sql injection
A vulnerability was found in SourceCodester Online Eyewear Shop 1.0. It has been classified as critical. Affected is an unknown function of the file /admin/?page=reports of the component Report Viewing Page. The manipulation of the argument date leads to sql injection. It is possible to launch th...
CVE-2024-9973 SourceCodester Online Eyewear Shop Report Viewing Page page sql injection
A vulnerability was found in SourceCodester Online Eyewear Shop 1.0. It has been classified as critical. Affected is an unknown function of the file /admin/?page=reports of the component Report Viewing Page. The manipulation of the argument date leads to sql injection. It is possible to launch th...
CVE-2024-9973
CVE-2024-9973 affects SourceCodester Online Eyewear Shop 1.0, specifically the Report Viewing Page component (file /admin/?page=reports). The root cause is a manipulation of the date parameter in the reports query, leading to SQL injection. Impact is described as remote, with high confidentiality...
CVE-2024-9952
A vulnerability was found in SourceCodester Online Eyewear Shop 1.0 and classified as problematic. This issue affects some unknown processing of the file /admin/?page=systeminfo/contactinfo of the component Contact Information Page. The manipulation of the argument Address leads to cross site...
CVE-2024-9952
A vulnerability was found in SourceCodester Online Eyewear Shop 1.0 and classified as problematic. This issue affects some unknown processing of the file /admin/?page=systeminfo/contactinfo of the component Contact Information Page. The manipulation of the argument Address leads to cross site...