CVE-2024-8558

The CVE-2024-8558 entry affects SourceCodester Food Ordering Management System 1.0, specifically the Price Handler component in /foms/routers/place-order.php. The vulnerability arises from manipulating the total argument, causing improper validation of the input quantity. The attack can be initia...

CVE-2024-8555

A vulnerability was found in SourceCodester Clinics Patient Management System 2.0. It has been classified as problematic. Affected is an unknown function of the file congratulations.php. The manipulation of the argument gotopage leads to open redirect. It is possible to launch the attack remotely...

CVE-2024-8557

A vulnerability classified as critical has been found in SourceCodester Food Ordering Management System 1.0. This affects an unknown part of the file /foms/routers/cancel-order.php. The manipulation of the argument id leads to sql injection. It is possible to initiate the attack remotely. The...

CVE-2024-8557 SourceCodester Food Ordering Management System cancel-order.php sql injection

A vulnerability classified as critical has been found in SourceCodester Food Ordering Management System 1.0. This affects an unknown part of the file /foms/routers/cancel-order.php. The manipulation of the argument id leads to sql injection. It is possible to initiate the attack remotely. The...

CVE-2024-8557 SourceCodester Food Ordering Management System cancel-order.php sql injection

A vulnerability classified as critical has been found in SourceCodester Food Ordering Management System 1.0. This affects an unknown part of the file /foms/routers/cancel-order.php. The manipulation of the argument id leads to sql injection. It is possible to initiate the attack remotely. The...

CVE-2024-8557

The CVE-2024-8557 entry concerns SourceCodester Food Ordering Management System 1.0. Affected component: /foms/routers/cancel-order.php. Root cause: manipulation of the id parameter enables SQL injection, allowing remote exploitation. Several sources confirm a publicly disclosed exploit and pract...

CVE-2024-8555

CVE-2024-8555 affects SourceCodester Clinics Patient Management System 2.0. The vulnerability is an open redirect in the file congratulations.php caused by manipulation of the goto_page parameter. It can be exploited remotely; the exploit has been disclosed publicly. The provided documents do not...

CVE-2024-8555 SourceCodester Clinics Patient Management System congratulations.php redirect

A vulnerability was found in SourceCodester Clinics Patient Management System 2.0. It has been classified as problematic. Affected is an unknown function of the file congratulations.php. The manipulation of the argument gotopage leads to open redirect. It is possible to launch the attack remotely...

CVE-2024-8554

A vulnerability was found in SourceCodester Clinics Patient Management System 2.0 and classified as problematic. This issue affects some unknown processing of the file /users.php. The manipulation of the argument message leads to cross site scripting. The attack may be initiated remotely. The...

CVE-2024-8554

A vulnerability was found in SourceCodester Clinics Patient Management System 2.0 and classified as problematic. This issue affects some unknown processing of the file /users.php. The manipulation of the argument message leads to cross site scripting. The attack may be initiated remotely. The...

CVE-2024-8554 SourceCodester Clinics Patient Management System users.php cross site scripting

A vulnerability was found in SourceCodester Clinics Patient Management System 2.0 and classified as problematic. This issue affects some unknown processing of the file /users.php. The manipulation of the argument message leads to cross site scripting. The attack may be initiated remotely. The...

CVE-2024-8554 SourceCodester Clinics Patient Management System users.php cross site scripting

A vulnerability was found in SourceCodester Clinics Patient Management System 2.0 and classified as problematic. This issue affects some unknown processing of the file /users.php. The manipulation of the argument message leads to cross site scripting. The attack may be initiated remotely. The...

CVE-2024-8554

CVE-2024-8554 affects SourceCodester Clinics Patient Management System 2.0. The vulnerable component is the /users.php file, where manipulating the message parameter yields cross-site scripting. The issue enables remote exploitation and the exploit has been disclosed publicly. Public-facing explo...

PT-2024-39100 · Sourcecodester · Sourcecodester Php Crud

Name of the Vulnerable Software and Affected Versions: SourceCodester PHP CRUD version 1.0 Description: A vulnerability was found in the software, classified as problematic. It affects the file /endpoint/update.php, where the manipulation of the first name, middle name, and last name arguments...

PT-2024-39099 · Unknown · Sourcecodester Php Crud

Name of the Vulnerable Software and Affected Versions: SourceCodester PHP CRUD version 1.0 Description: A security issue was discovered in the file /endpoint/Add.php, where the manipulation of the arguments first name, middle name, and last name leads to cross-site scripting. The attack can be...

PHP CRUD SQL注入漏洞

PHP CRUD is a PHP-based implementation of add, delete, change and retrieve. A SQL injection vulnerability exists in SourceCodester PHP CRUD version 1.0, which originates from the tblpersonid/firstname/middlename/lastname parameters of the /endpoint/update.php file containing a SQL injection...

PT-2024-39101 · Sourcecodester · Sourcecodester Php Crud

Name of the Vulnerable Software and Affected Versions: SourceCodester PHP CRUD version 1.0 Description: A critical issue has been identified, affecting the file /endpoint/update.php. The manipulation of the arguments tbl person id, first name, middle name, and last name can lead to SQL injection...

PT-2024-39098 · Sourcecodester · Sourcecodester Php Crud

Name of the Vulnerable Software and Affected Versions: SourceCodester PHP CRUD version 1.0 Description: A critical issue has been found in the Delete Person Handler component, specifically in the file /endpoint/delete.php. The manipulation of the person argument leads to SQL injection. This issue...

SourceCodester Clinics Patient Management System 安全漏洞

SourceCodester Clinics Patient Management System is a clinic patient management system from SourceCodester, Inc. A security vulnerability exists in SourceCodester Clinics Patient Management System version 2.0, which stems from the parameter message in the file /users.php that can lead to cross-si...

PT-2024-39093 · Sourcecodester · Clinic'S Patient Management System

Name of the Vulnerable Software and Affected Versions: SourceCodester Clinics Patient Management System version 2.0 Description: A vulnerability exists in the system, allowing for an open redirect. The issue is related to the manipulation of the goto page argument in an unknown function of the fi...