CVE-2024-9321 SourceCodester Online Railway Reservation System view_details.php access control

A vulnerability was found in SourceCodester Online Railway Reservation System 1.0 and classified as critical. This issue affects some unknown processing of the file /admin/inquiries/viewdetails.php. The manipulation of the argument id leads to improper access controls. The attack may be initiated...

CVE-2024-9321 SourceCodester Online Railway Reservation System view_details.php access control

A vulnerability was found in SourceCodester Online Railway Reservation System 1.0 and classified as critical. This issue affects some unknown processing of the file /admin/inquiries/viewdetails.php. The manipulation of the argument id leads to improper access controls. The attack may be initiated...

CVE-2024-9321

CVE-2024-9321 affects SourceCodester Online Railway Reservation System 1.0. The vulnerability is in the /admin/inquiries/view_details.php page where manipulating the id parameter leads to improper access controls, with remote exploitation possible. According to the supplied sources, the issue has...

CVE-2024-9320

A vulnerability has been found in SourceCodester Online Timesheet App 1.0 and classified as problematic. This vulnerability affects unknown code of the file /endpoint/add-timesheet.php of the component Add Timesheet Form. The manipulation of the argument day/task leads to cross site scripting. Th...

CVE-2024-9320

A vulnerability has been found in SourceCodester Online Timesheet App 1.0 and classified as problematic. This vulnerability affects unknown code of the file /endpoint/add-timesheet.php of the component Add Timesheet Form. The manipulation of the argument day/task leads to cross site scripting. Th...

CVE-2024-9319

A vulnerability, which was classified as critical, was found in SourceCodester Online Timesheet App 1.0. This affects an unknown part of the file /endpoint/delete-timesheet.php. The manipulation of the argument timesheet leads to sql injection. It is possible to initiate the attack remotely. The...

CVE-2024-9320 SourceCodester Online Timesheet App Add Timesheet Form add-timesheet.php cross site scripting

A vulnerability has been found in SourceCodester Online Timesheet App 1.0 and classified as problematic. This vulnerability affects unknown code of the file /endpoint/add-timesheet.php of the component Add Timesheet Form. The manipulation of the argument day/task leads to cross site scripting. Th...

CVE-2024-9320

SourceCodester Online Timesheet App 1.0 contains a cross-site scripting (XSS) vulnerability in the Add Timesheet Form component, due to manipulation of the day/task parameter in /endpoint/add-timesheet.php. The issue can be triggered remotely; public exploit details are referenced in multiple sou...

PT-2024-39577 · Sourcecodester · Sourcecodester Advocate Office Management System

Name of the Vulnerable Software and Affected Versions: SourceCodester Advocate Office Management System version 1.0 Description: A critical issue affects the processing of the file /control/edit client.php, where the manipulation of the id argument leads to SQL injection. The attack can be...

PT-2024-39569 · Sourcecodester · Sourcecodester Online Timesheet App

Name of the Vulnerable Software and Affected Versions: SourceCodester Online Timesheet App version 1.0 Description: A problematic issue has been found in the Add Timesheet Form component, specifically affecting the /endpoint/add-timesheet.php file. The manipulation of the day/task argument leads ...

PT-2024-39572 · Sourcecodester · Sourcecodester Inventory Management System

Name of the Vulnerable Software and Affected Versions: SourceCodester Inventory Management System version 1.0 Description: A vulnerability was found in the system, affecting an unknown functionality of the file /app/action/add staff.php. The manipulation leads to cross site scripting. The attack...

PT-2024-39570 · Sourcecodester · Sourcecodester Online Railway Reservation System

Name of the Vulnerable Software and Affected Versions: SourceCodester Online Railway Reservation System version 1.0 Description: A critical issue affects the processing of the file /admin/inquiries/view details.php, where the manipulation of the id argument leads to improper access controls. The...

CVE-2024-9319

CVE-2024-9319 affects SourceCodester Online Timesheet App 1.0. The vulnerability is a SQL injection in an unknown part of /endpoint/delete-timesheet.php caused by manipulation of the timesheet parameter. It can be exploited remotely and the exploit has been publicly disclosed, indicating active r...

CVE-2024-9319 SourceCodester Online Timesheet App delete-timesheet.php sql injection

A vulnerability, which was classified as critical, was found in SourceCodester Online Timesheet App 1.0. This affects an unknown part of the file /endpoint/delete-timesheet.php. The manipulation of the argument timesheet leads to sql injection. It is possible to initiate the attack remotely. The...

CVE-2024-9319 SourceCodester Online Timesheet App delete-timesheet.php sql injection

A vulnerability, which was classified as critical, was found in SourceCodester Online Timesheet App 1.0. This affects an unknown part of the file /endpoint/delete-timesheet.php. The manipulation of the argument timesheet leads to sql injection. It is possible to initiate the attack remotely. The...

CVE-2024-9318

A vulnerability, which was classified as critical, has been found in SourceCodester Advocate Office Management System 1.0. Affected by this issue is some unknown functionality of the file /control/activate.php. The manipulation of the argument id leads to sql injection. The attack may be launched...

CVE-2024-9318

CVE-2024-9318 affects SourceCodester Advocate Office Management System 1.0. The vulnerability is an SQL injection in the file /control/activate.php caused by manipulation of the id parameter. It can be exploited remotely and is described as critical in multiple sources. Some documents provide no ...

CVE-2024-9318 SourceCodester Advocate Office Management System activate.php sql injection

A vulnerability, which was classified as critical, has been found in SourceCodester Advocate Office Management System 1.0. Affected by this issue is some unknown functionality of the file /control/activate.php. The manipulation of the argument id leads to sql injection. The attack may be launched...

CVE-2024-9318 SourceCodester Advocate Office Management System activate.php sql injection

A vulnerability, which was classified as critical, has been found in SourceCodester Advocate Office Management System 1.0. Affected by this issue is some unknown functionality of the file /control/activate.php. The manipulation of the argument id leads to sql injection. The attack may be launched...

CVE-2024-9317

A vulnerability classified as critical was found in SourceCodester Online Eyewear Shop 1.0. Affected by this vulnerability is the function deletecategory of the file /classes/Master.php?f=deletecategory. The manipulation of the argument id leads to sql injection. The attack can be launched...