7 matches found
CVE-2024-9319
A vulnerability, which was classified as critical, was found in SourceCodester Online Timesheet App 1.0. This affects an unknown part of the file /endpoint/delete-timesheet.php. The manipulation of the argument timesheet leads to sql injection. It is possible to initiate the attack remotely. The...
CVE-2024-9320
A vulnerability has been found in SourceCodester Online Timesheet App 1.0 and classified as problematic. This vulnerability affects unknown code of the file /endpoint/add-timesheet.php of the component Add Timesheet Form. The manipulation of the argument day/task leads to cross site scripting. Th...
CVE-2024-9319
A vulnerability, which was classified as critical, was found in SourceCodester Online Timesheet App 1.0. This affects an unknown part of the file /endpoint/delete-timesheet.php. The manipulation of the argument timesheet leads to sql injection. It is possible to initiate the attack remotely. The...
PT-2024-39568 · Unknown · Sourcecodester Online Timesheet App
Name of the Vulnerable Software and Affected Versions: SourceCodester Online Timesheet App version 1.0 Description: A critical vulnerability was found in the SourceCodester Online Timesheet App, affecting an unknown part of the file /endpoint/delete-timesheet.php. The manipulation of the timeshee...
SourceCodester Online Timesheet App SQL注入漏洞
SourceCodester Online Timesheet App is a web application from SourceCodester built with PHP and MySQL designed to simplify time management and task tracking. A SQL injection vulnerability exists in the SourceCodester Online Timesheet App version 1.0, which stems from an SQL injection issue...
SourceCodester Online Timesheet App 跨站脚本漏洞
SourceCodester Online Timesheet App is a SourceCodester open source web application built with PHP and MySQL designed to simplify time management and task tracking. A cross-site scripting vulnerability exists in version 1.0 of the SourceCodester Online Timesheet App, which stems from a cross-site...
CVE-2022-27108
OrangeHRM 4.10 is vulnerable to Insecure Direct Object Reference IDOR via the end point symfony/web/index.php/time/createTimesheet. Any user can create a timesheet in another user's account...