10 matches found
CVE-2024-25325
SQL injection vulnerability in Employee Management System v.1.0 allows a local attacker to obtain sensitive information via a crafted payload to the txtemail parameter in the login.php...
PT-2024-20889 · Unknown · Employee Management System
Name of the Vulnerable Software and Affected Versions: Employee Management System version 1.0 Description: A SQL injection issue allows a local attacker to obtain sensitive information via a crafted payload to the txtemail parameter in the "login.php" endpoint. This enables the attacker to...
CVE-2022-43076
A cross-site scripting XSS vulnerability in /admin/edit-admin.php of Web-Based Student Clearance System v1.0 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the txtemail parameter...
CVE-2022-43076
A cross-site scripting XSS vulnerability in /admin/edit-admin.php of Web-Based Student Clearance System v1.0 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the txtemail parameter...
Cross site scripting
A cross-site scripting XSS vulnerability in /admin/edit-admin.php of Web-Based Student Clearance System v1.0 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the txtemail parameter...
CVE-2022-43076
A cross-site scripting XSS vulnerability in /admin/edit-admin.php of Web-Based Student Clearance System v1.0 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the txtemail parameter...
CVE-2009-4947
SQL injection vulnerability in frmLoginPwdReminderPopup.aspx in Q2 Solutions ConnX 4.0.20080606 allows remote attackers to execute arbitrary SQL commands via the txtEmail parameter...
Sql injection
SQL injection vulnerability in frmLoginPwdReminderPopup.aspx in Q2 Solutions ConnX 4.0.20080606 allows remote attackers to execute arbitrary SQL commands via the txtEmail parameter...
Sql injection
Multiple SQL injection vulnerabilities in customerlogincheck.asp in ClickTech ClickCart 6.0 allow remote attackers to execute arbitrary SQL commands via 1 the txtEmail parameter aka E-MAIL field or 2 the txtPassword parameter aka password field to customerlogin.asp. NOTE: some of these details ar...
Sql injection
SQL injection vulnerability in logincheck.asp in ClickAuction allows remote attackers to execute arbitrary SQL commands via the 1 txtEmail and 2 txtPassword parameters. NOTE: some of these details are obtained from third party information...