7831 matches found
Sourcecodester Alumni Management System Remote Code Execution Vulnerability
Sourcecodester Alumni Management System is a Php, Mysql based alumni management system from Sourcecodester, Inc. A remote code execution vulnerability exists in the SourceCodester Alumni Management System version 1.0, which can be exploited by an authenticated attacker to upload an arbitrary file...
CVE-2020-28072
A Remote Code Execution vulnerability exists in DourceCodester Alumni Management System 1.0. An authenticated attacker can upload arbitrary file in the gallery.php page and executing it on the server reaching the RCE...
Alumni Management System 1.0 Shell Upload
Exploit Title: Remote Code Execution on Alumni Management System Date: 23/10/2020 Exploit Author: Valerio Alessandroni Vendor Homepage: https://www.sourcecodester.com Software Link: https://www.sourcecodester.com/php/14524/alumni-management-system-using-phpmysql-s ource-code.html Version: 1.0...
Online Bus Ticket Reservation SQL Injection Vulnerability
Sourcecodester Online Bus Ticket Reservation is an online bus ticketing platform from Sourcecodester USA. A SQL injection vulnerability exists in Online Bus Ticket Reservation version 1.0, which stems from a database-based application that lacks validation of externally-entered SQL statements. An...
SourceCodester Water Billing System SQL Injection (CVE-2020-28183)
An SQL injection vulnerability exists in SourceCodester Water Billing System. Successful exploitation of this vulnerability would allow a remote attacker to execute arbitrary SQL commands on the affected system...
Sourcecodester Car Rental Management System 输入验证错误漏洞
Sourcecodester Car Rental Management System is a car rental management system from Sourcecodester USA. A security vulnerability exists in version 1.0 of the SourceCodester Car Rental Management System, which can be exploited by an unauthenticated user to perform a file inclusion attack on the...
SourceCodester Online Examination System Cross-Site Scripting Vulnerability (CNVD-2021-95922)
SourceCodester Online Examination System is an online examination system from SourceCodester, Inc. A cross-site scripting vulnerability exists in SourceCodester Online Examination System, which originates from the q parameter does not filter user input, which can be exploited to execute JavaScrip...
CVE-2020-25955
SourceCodester Student Management System Project in PHP version 1.0 is vulnerable to stored a cross-site scripting XSS via the 'add subject' tab...
CVE-2020-25955
SourceCodester Student Management System Project in PHP version 1.0 is vulnerable to stored a cross-site scripting XSS via the 'add subject' tab...
CVE-2020-25955
Affected software: SourceCodester Student Management System Project in PHP version 1.0. The CVE-2020-25955 entry describes a stored XSS vulnerability exploitable through the add subject tab. Root cause: input entered via the tab is stored and subsequently reflected, enabling script execution. Imp...
Employee Performance Evaluation System 1.0 Cross Site Scripting
Exploit Title: Employee Performance Evaluation System 1.0 - ' Task and Description' Persistent Cross Site Scripting Date: 08/12/2020 Exploit Author: Ritesh Gohil Vendor Homepage: https://www.sourcecodester.com Software Link:...
Online Bus Booking System Project Using PHP MySQL 1.0 SQL Injection
For CVE-2020-25889: Exploit Title: online bus booking system project using PHP MySQL - SQL Injection Exploit Author: Krishna Yadav Vendor Homepage: https://www.sourcecodester.com Software Link: https://www.sourcecodester.com/php/14438/online-bus-booking-system-project-using-phpmysql.html Version:...
Pharmacy Store Management System 1.0 - 'id' SQL Injection
Exploit Title: Pharmacy Store Management System 1.0 - 'id' SQL Injection Google Dork: N/A Date: 1.12.2020 Exploit Author: Aydın Baran Ertemir Vendor Homepage: https://www.sourcecodester.com/php/13225/pharmacy-store-management-system.html Software Link:...
SourceCodester Multi Restaurant Table Reservation System SQL Injection Vulnerability
SourceCodester Multi Restaurant Table Reservation System is a multi restaurant table reservation system from USSourceCodester. Multi Restaurant Table Reservation System version 1.0 has a SQL injection vulnerability that originates from /dashboard/view-chair-list.php?tableid=No input validation is...
SourceCodester Online Clothing Store Command Injection (CVE-2020-28140)
A command injection vulnerability exists in SourceCodester Online Clothing Store. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary commands on the affected system...
SourceCodester Online Library Management System Command Injection (CVE-2020-28130)
A command injection vulnerability exists in SourceCodester Online Library Management System. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary commands on the affected system...
Online Shopping Alphaware 1.0 - Error Based SQL injection
Title: Online Shopping Alphaware 1.0 - Error-Based SQL injection Exploit Author: Moaaz Taha 0xStorm Date: 2020-08-20 Vendor Homepage: https://www.sourcecodester.com/php/14368/online-shopping-alphaware-phpmysql.html Software Link:...
Social Networking Site - Authentication Bypass (SQli)
Exploit Title: Social Networking Site - Authentication Bypass SQli Date: 2020-11-17 Exploit Author: gh1mau Email: [email protected] Team Members: Capt'N, muzzo, chaos689 | https://h0fclanmalaysia.wordpress.com/ Vendor Homepage:...
SourceCodester Online Clothing Store SQL Injection (CVE-2020-28138)
An SQL injection vulnerability exists in SourceCodester Online Clothing Store. Successful exploitation of this vulnerability would allow a remote attacker to execute arbitrary SQL commands on the affected system...
Sourcecodester SourceCodester Grocery Store Sales And Inventory System SQL Injection Vulnerability
Sourcecodester SourceCodester Grocery Store Sales And Inventory System is a grocery store sales and inventory management system from SourceCodester USA. A SQL injection vulnerability exists in SourceCodester Grocery Store Sales And Inventory System version 1.0, which can be exploited by an attack...