Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

16049 matches found

Vulnrichment
Vulnrichmentadded 2024/10/10 4:31 p.m.5 views

CVE-2024-9799 SourceCodester Profile Registration without Reload Refresh add.php cross site scripting

A vulnerability has been found in SourceCodester Profile Registration without Reload Refresh 1.0 and classified as problematic. Affected by this vulnerability is an unknown functionality of the file add.php. The manipulation of the argument...

5.3CVSS3.8AI score0.00143EPSS
Exploits1References5
CVE
CVEadded 2024/10/10 4:31 p.m.38 views

CVE-2024-9799

CVE-2024-9799 affects SourceCodester Profile Registration without Reload Refresh 1.0. The vulnerable component is add.php, where parameters such as email_address, address, company_name, job_title, and jobDescription can be manipulated to trigger cross-site scripting. The issue can be exploited re...

6.1CVSS4.1AI score0.00143EPSS
Exploits1References5Affected Software1
CNNVD
CNNVDadded 2024/10/10 12:0 a.m.1 views

SourceCodester Profile Registration without Reload Refresh 跨站脚本漏洞

SourceCodester Profile Registration without Reload Refresh is a SourceCodester open source application. A cross-site scripting vulnerability exists in SourceCodester Profile Registration without Reload Refresh version 1.0, which originates in the file add.php with the parameters...

6.1CVSS4.3AI score0.00143EPSS
Exploits1References6
CNNVD
CNNVDadded 2024/10/10 12:0 a.m.1 views

SourceCodester Online Veterinary Appointment System SQL注入漏洞

SourceCodester Online Veterinary Appointment System is a SourceCodester open source online veterinary appointment system. A SQL injection vulnerability exists in SourceCodester Online Veterinary Appointment System version 1.0, which originates from the parameter id of the file...

9.8CVSS7.9AI score0.00097EPSS
Exploits1References6
CNNVD
CNNVDadded 2024/10/10 12:0 a.m.2 views

SourceCodester Record Management System 跨站脚本漏洞

SourceCodester Record Management System is a SourceCodester open source record management system. A cross-site scripting vulnerability exists in SourceCodester Record Management System version 1.0, which stems from the parameter qualification in the file sort2user.php that can lead to cross-site...

6.1CVSS4.5AI score0.00131EPSS
Exploits1References6
OSV
OSVadded 2024/09/30 3:15 p.m.1 views

CVE-2024-46293

Sourcecodester Online Medicine Ordering System 1.0 is vulnerable to Incorrect Access Control. There is a lack of authorization checks for admin operations. Specifically, an attacker can perform admin-level actions without possessing a valid session token. The application does not verify whether t...

9.8CVSS5.8AI score0.00309EPSS
Exploits0References1
Positive Technologies
Positive Technologiesadded 2024/09/30 12:0 a.m.2 views

PT-2024-31948 · Sourcecodester · Sourcecodester Online Medicine Ordering System

Name of the Vulnerable Software and Affected Versions: Sourcecodester Online Medicine Ordering System version 1.0 Description: The issue is related to Incorrect Access Control, where there is a lack of authorization checks for admin operations. Specifically, an attacker can perform admin-level...

9.8CVSS6.9AI score0.00309EPSS
Exploits0References8
Cvelist
Cvelistadded 2024/09/30 12:0 a.m.10 views

CVE-2024-46293

Sourcecodester Online Medicine Ordering System 1.0 is vulnerable to Incorrect Access Control. There is a lack of authorization checks for admin operations. Specifically, an attacker can perform admin-level actions without possessing a valid session token. The application does not verify whether t...

0.00309EPSS
Exploits0References1
NVD
NVDadded 2024/09/29 11:15 p.m.16 views

CVE-2024-9328

A vulnerability was found in SourceCodester Advocate Office Management System 1.0. It has been rated as critical. This issue affects some unknown processing of the file /control/editclient.php. The manipulation of the argument id leads to sql injection. The attack may be initiated remotely. The...

9.8CVSS0.00077EPSS
Exploits1References5
OSV
OSVadded 2024/09/29 11:15 p.m.2 views

CVE-2024-9328

A vulnerability was found in SourceCodester Advocate Office Management System 1.0. It has been rated as critical. This issue affects some unknown processing of the file /control/editclient.php. The manipulation of the argument id leads to sql injection. The attack may be initiated remotely. The...

9.8CVSS5.8AI score0.00077EPSS
Exploits1References5
Vulnrichment
Vulnrichmentadded 2024/09/29 10:31 p.m.22 views

CVE-2024-9328 SourceCodester Advocate Office Management System edit_client.php sql injection

A vulnerability was found in SourceCodester Advocate Office Management System 1.0. It has been rated as critical. This issue affects some unknown processing of the file /control/editclient.php. The manipulation of the argument id leads to sql injection. The attack may be initiated remotely. The...

6.5CVSS7.6AI score0.00077EPSS
Exploits1References5
CVE
CVEadded 2024/09/29 10:31 p.m.49 views

CVE-2024-9328

CVE-2024-9328 concerns the SourceCodester Advocate Office Management System 1.0. The vulnerability is an SQL injection in the /control/edit_client.php page, caused by manipulation of the id argument. It can be exploited remotely and the exploit has been disclosed publicly. Impact is described as ...

9.8CVSS7AI score0.00077EPSS
Exploits1References5Affected Software1
Cvelist
Cvelistadded 2024/09/29 10:31 p.m.22 views

CVE-2024-9328 SourceCodester Advocate Office Management System edit_client.php sql injection

A vulnerability was found in SourceCodester Advocate Office Management System 1.0. It has been rated as critical. This issue affects some unknown processing of the file /control/editclient.php. The manipulation of the argument id leads to sql injection. The attack may be initiated remotely. The...

6.5CVSS0.00077EPSS
Exploits1References5
NVD
NVDadded 2024/09/29 7:15 a.m.14 views

CVE-2024-9323

A vulnerability was found in SourceCodester Inventory Management System 1.0. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the file /app/action/addstaff.php. The manipulation leads to cross site scripting. The attack can be launched remotely. T...

5.4CVSS0.00131EPSS
Exploits1References5
OSV
OSVadded 2024/09/29 7:15 a.m.2 views

CVE-2024-9323

A vulnerability was found in SourceCodester Inventory Management System 1.0. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the file /app/action/addstaff.php. The manipulation leads to cross site scripting. The attack can be launched remotely. T...

5.4CVSS3.7AI score
Exploits0References5
Vulnrichment
Vulnrichmentadded 2024/09/29 6:31 a.m.13 views

CVE-2024-9323 SourceCodester Inventory Management System add_staff.php cross site scripting

A vulnerability was found in SourceCodester Inventory Management System 1.0. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the file /app/action/addstaff.php. The manipulation leads to cross site scripting. The attack can be launched remotely. T...

5.3CVSS6.5AI score0.00131EPSS
Exploits1References5
CVE
CVEadded 2024/09/29 6:31 a.m.46 views

CVE-2024-9323

The CVE-2024-9323 entry concerns SourceCodester Inventory Management System 1.0, where an unknown function in /app/action/add_staff.php is vulnerable to cross-site scripting. The issue can be triggered remotely and the exploit has been disclosed publicly. Multiple connected sources corroborate th...

5.4CVSS4AI score0.00131EPSS
Exploits1References5Affected Software1
Cvelist
Cvelistadded 2024/09/29 6:31 a.m.15 views

CVE-2024-9323 SourceCodester Inventory Management System add_staff.php cross site scripting

A vulnerability was found in SourceCodester Inventory Management System 1.0. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the file /app/action/addstaff.php. The manipulation leads to cross site scripting. The attack can be launched remotely. T...

5.3CVSS0.00131EPSS
Exploits1References5
OSV
OSVadded 2024/09/29 1:15 a.m.0 views

CVE-2024-9321

A vulnerability was found in SourceCodester Online Railway Reservation System 1.0 and classified as critical. This issue affects some unknown processing of the file /admin/inquiries/viewdetails.php. The manipulation of the argument id leads to improper access controls. The attack may be initiated...

5.3CVSS5.5AI score
Exploits0References5
NVD
NVDadded 2024/09/29 1:15 a.m.6 views

CVE-2024-9321

A vulnerability was found in SourceCodester Online Railway Reservation System 1.0 and classified as critical. This issue affects some unknown processing of the file /admin/inquiries/viewdetails.php. The manipulation of the argument id leads to improper access controls. The attack may be initiated...

6.9CVSS0.00172EPSS
Exploits1References5
Rows per page
Query Builder