CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Cvelist•added 2024/09/04 4:31 p.m.•17 views

CVE-2024-8414 SourceCodester Insurance Management System cross-site request forgery

6.9CVSS0.00149EPSS

CVE•added 2024/09/04 4:31 p.m.•44 views

CVE-2024-8414

CVE-2024-8414 affects SourceCodester Insurance Management System 1.0. The vulnerability is a cross-site request forgery (CSRF) in an unknown functionality that can be triggered remotely; the exploit has been disclosed publicly. The provided connected documents confirm CSRF impact but do not speci...

6.9CVSS4.6AI score0.00149EPSS

Exploits1References5Affected Software1

Packet Storm•added 2024/09/04 12:0 a.m.•198 views

Tenant courier management 1.0 Insecure Settings

============================================================================================================================================= | Title : Tenant courier management v1.0 Insecure Settings Vulnerability | | Author : indoushka | | Tested on : windows 10 FrPro / browser : Mozilla firefo...

OSV•added 2024/09/03 1:15 a.m.•2 views

CVE-2024-8380

A vulnerability was found in SourceCodester Contact Manager with Export to VCF 1.0. It has been rated as critical. This issue affects some unknown processing of the file /endpoint/delete-account.php of the component Delete Contact Handler. The manipulation of the argument contact leads to sql...

9.8CVSS5.8AI score0.00096EPSS

NVD•added 2024/09/03 1:15 a.m.•8 views

CVE-2024-8380

9.8CVSS0.00096EPSS

CVE•added 2024/09/03 12:31 a.m.•48 views

CVE-2024-8380

SourceCodester Contact Manager with Export to VCF 1.0 contains a SQL injection vulnerability in the Delete Contact Handler, specifically the /endpoint/delete-account.php endpoint. The issue arises from improper handling of the contact parameter, allowing remote exploitation. Public disclosure of ...

9.8CVSS7AI score0.00096EPSS

Exploits1References5Affected Software1

Vulnrichment•added 2024/09/03 12:31 a.m.•14 views

CVE-2024-8380 SourceCodester Contact Manager with Export to VCF Delete Contact delete-account.php sql injection

6.5CVSS7.3AI score0.00096EPSS

Cvelist•added 2024/09/03 12:31 a.m.•11 views

CVE-2024-8380 SourceCodester Contact Manager with Export to VCF Delete Contact delete-account.php sql injection

6.5CVSS0.00096EPSS

CNNVD•added 2024/09/03 12:0 a.m.•1 views

SourceCodester Contact Manager with Export to VCF SQL注入漏洞

SourceCodester Contact Manager with Export to VCF is a SourceCodester open source contact manager. A SQL injection vulnerability exists in SourceCodester Contact Manager with Export to VCF version 1.0, which stems from an incorrect operation of the parameter contact that can lead to SQL injection...

9.8CVSS7.1AI score0.00096EPSS

Exploits1References6

Packet Storm•added 2024/09/03 12:0 a.m.•332 views

Online Travel Agency System 1.0 Arbitrary File Upload

============================================================================================================================================= | Title : Online Travel Agency System v1.0 Remote File Upload Vulnerability | | Author : indoushka | | Tested on : windows 10 FrPro / browser : Mozilla...

Packet Storm•added 2024/09/03 12:0 a.m.•260 views

Online Traffic Offense 1.0 Cross Site Request Forgery

============================================================================================================================================= | Title : Online Traffic Offense 1.0 CSRF Add Admin Vulnerability | | Author : indoushka | | Tested on : windows 10 FrPro / browser : Mozilla firefox 128.0...

Packet Storm•added 2024/09/02 12:0 a.m.•226 views

Loan Management System 2024 1.0 Insecure Settings

============================================================================================================================================= | Title : Loan Management System 2024 v1.0 Insecure Settings Vulnerability | | Author : indoushka | | Tested on : windows 10 FrPro / browser : Mozilla...

Positive Technologies•added 2024/09/02 12:0 a.m.•3 views

PT-2024-38984 · Unknown · Sourcecodester Contact Manager With Export To Vcf

Name of the Vulnerable Software and Affected Versions: SourceCodester Contact Manager with Export to VCF version 1.0 Description: A critical issue affects some unknown processing of the file /endpoint/delete-account.php of the component Delete Contact Handler. The manipulation of the argument...

9.8CVSS7.2AI score0.00096EPSS

Exploits1References12

NVD•added 2024/08/30 10:15 p.m.•17 views

CVE-2024-8348

A vulnerability, which was classified as critical, has been found in SourceCodester Computer Laboratory Management System 1.0. Affected by this issue is the function deletecategory of the file /classes/Master.php?f=deletecategory. The manipulation of the argument id leads to sql injection. The...

9.8CVSS0.00225EPSS

OSV•added 2024/08/30 10:15 p.m.•1 views

CVE-2024-8348

9.8CVSS6.5AI score0.00225EPSS

NVD•added 2024/08/30 10:15 p.m.•12 views

CVE-2024-8347

A vulnerability classified as critical was found in SourceCodester Computer Laboratory Management System 1.0. Affected by this vulnerability is the function deleterecord of the file /classes/Master.php?f=deleterecord. The manipulation of the argument id leads to sql injection. The attack can be...

9.8CVSS0.00225EPSS

Cvelist•added 2024/08/30 9:31 p.m.•15 views

CVE-2024-8348 SourceCodester Computer Laboratory Management System Master.php delete_category sql injection

6.5CVSS0.00225EPSS

CVE•added 2024/08/30 9:31 p.m.•45 views

CVE-2024-8348

CVE-2024-8348 affects SourceCodester Computer Laboratory Management System 1.0, specifically the delete_category function in /classes/Master.php?f=delete_category. The vulnerability is an SQL injection triggered by manipulating the id parameter, and is exploitable remotely. Multiple sources confi...

9.8CVSS7AI score0.00225EPSS

Exploits1References5Affected Software1

Vulnrichment•added 2024/08/30 9:31 p.m.•14 views

CVE-2024-8348 SourceCodester Computer Laboratory Management System Master.php delete_category sql injection

6.5CVSS7.3AI score0.00225EPSS