SourceCodester Profile Registration without Reload Refresh 跨站脚本漏洞

SourceCodester Profile Registration without Reload Refresh is a SourceCodester open source application. A cross-site scripting vulnerability exists in SourceCodester Profile Registration without Reload Refresh version 1.0, which stems from the parameter fullname in the file add.php that can lead ...

SourceCodester Profile Registration without Reload Refresh SQL注入漏洞

SourceCodester Profile Registration without Reload Refresh is a SourceCodester open source application. A SQL injection vulnerability exists in SourceCodester Profile Registration without Reload Refresh version 1.0, which stems from a parameter list in the file del.php of the component GET...

CVE-2024-9090

CVE-2024-9090 affects SourceCodester Modern Loan Management System 1.0, specifically the search_member.php file. The vulnerability is a SQL injection via the searchMember parameter, enabling remote exploitation. Public disclosures exist, and several sources classify it as critical/medium dependin...

CVE-2024-9090 SourceCodester Modern Loan Management System search_member.php sql injection

A vulnerability was found in SourceCodester Modern Loan Management System 1.0. It has been classified as critical. Affected is an unknown function of the file searchmember.php. The manipulation of the argument searchMember leads to sql injection. It is possible to launch the attack remotely. The...

CVE-2024-9090 SourceCodester Modern Loan Management System search_member.php sql injection

A vulnerability was found in SourceCodester Modern Loan Management System 1.0. It has been classified as critical. Affected is an unknown function of the file searchmember.php. The manipulation of the argument searchMember leads to sql injection. It is possible to launch the attack remotely. The...

CVE-2024-9089 SourceCodester Modern Loan Management System update_loan_record.php cross site scripting

A vulnerability was found in SourceCodester Modern Loan Management System 1.0 and classified as problematic. This issue affects some unknown processing of the file updateloanrecord.php. The manipulation of the argument amount leads to cross site scripting. The attack may be initiated remotely. Th...

CVE-2024-9089 SourceCodester Modern Loan Management System update_loan_record.php cross site scripting

A vulnerability was found in SourceCodester Modern Loan Management System 1.0 and classified as problematic. This issue affects some unknown processing of the file updateloanrecord.php. The manipulation of the argument amount leads to cross site scripting. The attack may be initiated remotely. Th...

CVE-2024-9089

CVE-2024-9089 affects SourceCodester Modern Loan Management System 1.0. The vulnerability is a cross-site scripting issue caused by manipulation of the amount parameter in update_loan_record.php. The attack can be initiated remotely, and the exploit has been disclosed publicly. Practical impact i...

CVE-2024-9088

A vulnerability has been found in SourceCodester Telecom Billing Management System 1.0 and classified as critical. This vulnerability affects the function login. The manipulation of the argument uname leads to buffer overflow. The exploit has been disclosed to the public and may be used...

CVE-2024-9088

A vulnerability has been found in SourceCodester Telecom Billing Management System 1.0 and classified as critical. This vulnerability affects the function login. The manipulation of the argument uname leads to buffer overflow. The exploit has been disclosed to the public and may be used...

CVE-2024-9088 SourceCodester Telecom Billing Management System login buffer overflow

A vulnerability has been found in SourceCodester Telecom Billing Management System 1.0 and classified as critical. This vulnerability affects the function login. The manipulation of the argument uname leads to buffer overflow. The exploit has been disclosed to the public and may be used...

CVE-2024-9088

CVE-2024-9088 : Multiple sources confirm a buffer overflow in the login function of SourceCodester Telecom Billing Management System 1.0 caused by improper handling of the uname argument. Exploitation has been publicly disclosed, indicating real-world risk, though specific exploit steps are not p...

CVE-2024-9088 SourceCodester Telecom Billing Management System login buffer overflow

A vulnerability has been found in SourceCodester Telecom Billing Management System 1.0 and classified as critical. This vulnerability affects the function login. The manipulation of the argument uname leads to buffer overflow. The exploit has been disclosed to the public and may be used...

CVE-2024-9083

A vulnerability classified as problematic has been found in SourceCodester Employee Management System 1.0. This affects an unknown part of the file /Admin/add-admin.php. The manipulation of the argument txtfullname leads to cross site scripting. It is possible to initiate the attack remotely. The...

CVE-2024-9083 SourceCodester Employee Management System add-admin.php cross site scripting

A vulnerability classified as problematic has been found in SourceCodester Employee Management System 1.0. This affects an unknown part of the file /Admin/add-admin.php. The manipulation of the argument txtfullname leads to cross site scripting. It is possible to initiate the attack remotely. The...

CVE-2024-9083

SourceCodester Employee Management System 1.0 is affected. The vulnerability lies in /Admin/add-admin.php where improper handling of the txtfullname parameter enables cross-site scripting. It can be triggered remotely and the exploit has been disclosed publicly. There are no patch/version details...

CVE-2024-9083 SourceCodester Employee Management System add-admin.php cross site scripting

A vulnerability classified as problematic has been found in SourceCodester Employee Management System 1.0. This affects an unknown part of the file /Admin/add-admin.php. The manipulation of the argument txtfullname leads to cross site scripting. It is possible to initiate the attack remotely. The...

CVE-2024-9082

A vulnerability was found in SourceCodester Online Eyewear Shop 1.0. It has been rated as critical. Affected by this issue is some unknown functionality of the file /classes/Users.php?f=save of the component User Creation Handler. The manipulation of the argument Type with the input 1 leads to...

CVE-2024-9082

SourceCodester Online Eyewear Shop v1.0 has a documented vulnerability in the User Creation Handler (file path variants: /classes/Users.php?f=save or /Users.phpf=save). The root cause is improper authorization triggered by manipulating the type argument (value 1), which can be exploited remotely....

CVE-2024-9082 SourceCodester Online Eyewear Shop User Creation Users.php improper authorization

A vulnerability was found in SourceCodester Online Eyewear Shop 1.0. It has been rated as critical. Affected by this issue is some unknown functionality of the file /classes/Users.php?f=save of the component User Creation Handler. The manipulation of the argument Type with the input 1 leads to...