Online Food Ordering System 访问控制错误漏洞

Online Food Ordering System is an online food ordering system by Carlo Montero, an individual developer. An access control error vulnerability exists in SourceCodester Online Food Ordering System version 2.0, which stems from the presence of an unknown function in the file...

CVE-2023-1416

A vulnerability classified as critical has been found in Simple Art Gallery 1.0. Affected is an unknown function of the file adminHome.php. The manipulation of the argument socialfacebook leads to sql injection. It is possible to launch the attack remotely. The exploit has been disclosed to the...

CVE-2023-1353 SourceCodester Design and Implementation of Covid-19 Directory on Vaccination System verification.php cross site scripting

A vulnerability, which was classified as problematic, was found in SourceCodester Design and Implementation of Covid-19 Directory on Vaccination System 1.0. Affected is an unknown function of the file verification.php. The manipulation of the argument txtvaccinationID leads to cross site scriptin...

PT-2023-16921 · Sourcecodester · Covid-19 Directory On Vaccination System

Name of the Vulnerable Software and Affected Versions: SourceCodester Design and Implementation of Covid-19 Directory on Vaccination System version 1.0 Description: A problematic issue was found in the system, affecting an unknown function of the file verification.php. The manipulation of the...

Sql injection

A vulnerability was found in SourceCodester Music Gallery Site 1.0. It has been classified as critical. Affected is an unknown function of the file /admin/?page=user/manage. The manipulation of the argument id leads to sql injection. It is possible to launch the attack remotely. The identifier of...

SourceCodester Doctors Appointment System SQL注入漏洞

SourceCodester Doctor Appointment System is an application from SourceCodester USA. It provides an appointment scheduling feature. A SQL injection vulnerability exists in the SourceCodester Doctors Appointment System version 1.0, which originates from a security issue with an unknown function in...

Information disclosure

A vulnerability was found in doomsider shadow. It has been classified as problematic. Affected is an unknown function. The manipulation leads to denial of service. Attacking locally is a requirement. The complexity of an attack is rather high. The exploitability is told to be difficult. Continiou...

PT-2023-10343 · Unknown · Doomsider Shadow

Name of the Vulnerable Software and Affected Versions: doomsider shadow affected versions not specified Description: A vulnerability was found in doomsider shadow, classified as problematic, affecting an unknown function. The manipulation leads to denial of service, requiring a local attack. The...

Auto Dealer Management System 安全漏洞

Auto Dealer Management System is an automobile dealer management system by Carlo Montero Personal Developer. A security vulnerability exists in Auto Dealer Management System version 1.0, which stems from a problem with an unknown function in the file /adms/classes/Users.php that could lead to...

CVE-2023-0905

A vulnerability classified as critical has been found in SourceCodester Employee Task Management System 1.0. Affected is an unknown function of the file changePasswordForEmployee.php. The manipulation leads to improper authentication. It is possible to launch the attack remotely. The exploit has...

Information disclosure

A vulnerability was found in CodenameOne 7.0.70. It has been classified as problematic. Affected is an unknown function. The manipulation leads to use of implicit intent for sensitive communication. It is possible to launch the attack remotely. The complexity of an attack is rather high. The...

Online Eyewear Shop SQL注入漏洞

Online Eyewear Shop is an online eyewear store by Carlo Montero, a personal developer. A SQL injection vulnerability exists in Online Eyewear Shop version 1.0 due to an unknown function in the file oews/products/viewproduct.php, which can be used for SQL injection via the parameters name/pwd...

Employee Leaves Management System 安全漏洞

Employee Leaves Management System ELMS is an internal employee management system for individual developers. A security vulnerability exists in PHPGurukul Employee Leaves Management System version 1.0, which is caused by an unknown function in the file changepassword.php, with a weak password in t...

wordcraft 跨站脚本漏洞

wordcraft is an application by the individual developer of capnsquarepants. A cross-site scripting vulnerability exists in wordcraft, which stems from an unknown function in tag.php that could lead to cross-site scripting...

CVE-2013-10014 oktora24 2moons sql injection

A vulnerability classified as critical has been found in oktora24 2moons. Affected is an unknown function. The manipulation leads to sql injection. The patch is identified as 1b09cf7672eb85b5b0c8a4de321f7a4ad87b09a7. It is recommended to apply a patch to fix this issue. VDB-218898 is the identifi...

PT-2023-10003 · Unknown · Oktora24 2Moons

Name of the Vulnerable Software and Affected Versions: oktora24 2moons affected versions not specified Description: A critical vulnerability has been found in oktora24 2moons, affecting an unknown function. The manipulation leads to sql injection. Recommendations: At the moment, there is no...

2moons SQL注入漏洞

2moons is an application by oktora24 Individual Developer. 2moons has a SQL injection vulnerability that stems from a vulnerability found in oktora24 2moons that is categorized as critical. An unknown function is affected. The operation results in sql injection...

Sql injection

A vulnerability was found in ollpu parontalli. It has been classified as critical. Affected is an unknown function of the file httpdocs/index.php. The manipulation of the argument s leads to sql injection. The patch is identified as 6891bb2dec57dca6daabc15a6d2808c8896620e5. It is recommended to...

saemorris TheRadSystem 跨站脚本漏洞

TheRadSystem is a Cmput 391 project by saemorris Individual Developer. A cross-site scripting vulnerability exists in saemorris TheRadSystem, which stems from a problem with an unknown function in the file users.php, which can be exploited by an attacker to manipulate the parameter q to cause...

PT-2023-16181 · Unknown · Theradsystem

Name of the Vulnerable Software and Affected Versions: saemorris TheRadSystem affected versions not specified Description: A problematic issue has been identified, affecting an unknown function of the file users.php. The manipulation of the q argument leads to cross-site scripting. This issue can...