133 matches found
Sql injection
A vulnerability, which was classified as critical, was found in SourceCodester Budget and Expense Tracker System 1.0. Affected is an unknown function of the file /admin/budget/managebudget.php of the component GET Parameter Handler. The manipulation of the argument id leads to sql injection. It i...
CVE-2023-2772 SourceCodester Budget and Expense Tracker System GET Parameter manage_budget.php sql injection
A vulnerability, which was classified as critical, was found in SourceCodester Budget and Expense Tracker System 1.0. Affected is an unknown function of the file /admin/budget/managebudget.php of the component GET Parameter Handler. The manipulation of the argument id leads to sql injection. It i...
CVE-2023-2772 SourceCodester Budget and Expense Tracker System GET Parameter manage_budget.php sql injection
A vulnerability, which was classified as critical, was found in SourceCodester Budget and Expense Tracker System 1.0. Affected is an unknown function of the file /admin/budget/managebudget.php of the component GET Parameter Handler. The manipulation of the argument id leads to sql injection. It i...
CVE-2023-2772
CVE-2023-2772 concerns SourceCodester Budget and Expense Tracker System 1.0. The vulnerability is an SQL injection in the GET parameter handler, specifically an unknown function of /admin/budget/manage_budget.php where the id argument is manipulated to inject SQL. This vulnerability can be exploi...
CVE-2023-30112
Medicine Tracker System in PHP 1.0.0 is vulnerable to SQL Injection...
CVE-2023-30111
Medicine Tracker System in PHP 1.0.0 is vulnerable to Cross Site Scripting XSS...
CVE-2023-30106
Sourcecodester Medicine Tracker System in PHP 1.0.0 is vulnerable to Cross Site Scripting XSS via page=about...
CVE-2023-30111
Medicine Tracker System in PHP 1.0.0 is vulnerable to Cross Site Scripting XSS...
CVE-2023-30112
Medicine Tracker System in PHP 1.0.0 is vulnerable to SQL Injection...
CVE-2023-30112
Medicine Tracker System in PHP 1.0.0 is vulnerable to SQL Injection...
Medicine Tracker System SQL注入漏洞
Medicine Tracker System is a drug tracking system by Carlo Montero Personal Developer. A security vulnerability exists in Medicine Tracker System version 1.0.0. An attacker could exploit this vulnerability to perform SQL injection attacks...
PT-2023-22543 · Unknown · Medicine Tracker System
Name of the Vulnerable Software and Affected Versions: Medicine Tracker System in PHP version 1.0.0 Description: The issue concerns a SQL Injection vulnerability. Recommendations: For Medicine Tracker System in PHP version 1.0.0, update to a version that fixes the SQL Injection issue, however at...
CVE-2023-30111
Medicine Tracker System in PHP 1.0.0 is vulnerable to Cross Site Scripting XSS...
CVE-2023-30106
CVE-2023-30106 affects Sourcecodester Medicine Tracker System in PHP 1.0.0. The vulnerability is a Cross-Site Scripting (XSS) flaw exploitable via the page parameter when set to about, enabling injection of malicious scripts. Connected sources confirm the affected product and vector but do not pr...
CVE-2023-30111
CVE-2023-30111 affects Medicine Tracker System in PHP version 1.0.0, with a Cross Site Scripting (XSS) vulnerability reported. The provided documents confirm the vulnerable component (Medicine Tracker System in PHP 1.0.0) and the vulnerability type, but do not supply concrete root cause details, ...
PT-2023-22540 · Sourcecodester · Sourcecodester Medicine Tracker System
Name of the Vulnerable Software and Affected Versions: Sourcecodester Medicine Tracker System in PHP version 1.0.0 Description: The issue is related to Cross Site Scripting XSS and can be exploited via the page parameter, specifically when set to about. This allows for malicious scripts to be...
Medicine Tracker System 跨站脚本漏洞
Medicine Tracker System is a drug tracking system by Carlo Montero Personal Developer. A security vulnerability exists in Medicine Tracker System version 1.0.0. An attacker could exploit this vulnerability to conduct a cross-site scripting attack via page=about...
Medicine Tracker System 跨站脚本漏洞
Medicine Tracker System is a drug tracking system by Carlo Montero Personal Developer. A security vulnerability exists in Medicine Tracker System version 1.0.0. An attacker could exploit this vulnerability to conduct cross-site scripting attacks...
CVE-2023-30111
Medicine Tracker System in PHP 1.0.0 is vulnerable to Cross Site Scripting XSS...
CVE-2023-30458
A username enumeration issue was discovered in Medicine Tracker System 1.0. The login functionality allows a malicious user to guess a valid username due to a different response time from invalid usernames. When one enters a valid username, the response time increases depending on the length of t...