CVE-2024-2944

A vulnerability was found in Campcodes Online Examination System 1.0 and classified as critical. This issue affects some unknown processing of the file /adminpanel/admin/query/deleteCourseExe.php. The manipulation of the argument id leads to sql injection. The attack may be initiated remotely. Th...

CVE-2024-2572

A vulnerability was found in SourceCodester Employee Task Management System 1.0. It has been rated as critical. This issue affects some unknown processing of the file /task-details.php. The manipulation leads to execution after redirect. The attack may be initiated remotely. The exploit has been...

CVE-2024-2282

A vulnerability was found in boyiddha Automated-Mess-Management-System 1.0. It has been rated as critical. This issue affects some unknown processing of the file /index.php of the component Login Page. The manipulation of the argument useremail leads to sql injection. The attack may be initiated...

CVE-2024-2150 SourceCodester Insurance Management System file inclusion

A vulnerability, which was classified as critical, has been found in SourceCodester Insurance Management System 1.0. This issue affects some unknown processing. The manipulation of the argument page leads to file inclusion. The attack may be initiated remotely. The exploit has been disclosed to t...

CVE-2024-1827

A vulnerability was found in code-projects Library System 1.0 and classified as critical. This issue affects some unknown processing of the file Source/librarian/user/teacher/login.php. The manipulation of the argument username/password leads to sql injection. The attack may be initiated remotely...

CVE-2024-1256

A vulnerability was found in Jspxcms 10.2.0 and classified as problematic. This issue affects some unknown processing of the file /ext/collect/filtertext.do. The manipulation leads to cross site scripting. The attack may be initiated remotely. The exploit has been disclosed to the public and may ...

CVE-2023-7134

A vulnerability was found in SourceCodester Medicine Tracking System 1.0. It has been rated as critical. This issue affects some unknown processing. The manipulation of the argument page leads to path traversal: '../filedir'. The attack may be initiated remotely. The exploit has been disclosed to...

CVE-2023-6440

A vulnerability was found in SourceCodester Book Borrower System 1.0 and classified as problematic. This issue affects some unknown processing of the file endpoint/add-book.php. The manipulation of the argument Book Title/Book Author leads to cross site scripting. The attack may be initiated...

Sql injection

A vulnerability was found in IBOS OA 4.5.5 and classified as critical. This issue affects some unknown processing of the file ?r=dashboard/database/optimize. The manipulation leads to sql injection. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used...

CVE-2023-1784 jeecg-boot API Documentation improper authentication

A vulnerability was found in jeecg-boot 3.5.0 and classified as critical. This issue affects some unknown processing of the component API Documentation. The manipulation leads to improper authentication. The attack may be initiated remotely. The exploit has been disclosed to the public and may be...

PT-2023-11828 · Unknown · Paxswill Eve Ship Replacement Program

Name of the Vulnerable Software and Affected Versions: paxswill EVE Ship Replacement Program version 0.12.11 Description: A vulnerability was found in the paxswill EVE Ship Replacement Program, affecting the User Information Handler component. This issue leads to information disclosure and can be...

PT-2023-9892 · Unknown · Frioux Ptome

Name of the Vulnerable Software and Affected Versions: frioux ptome affected versions not specified Description: A critical issue affects some unknown processing in frioux ptome, leading to sql injection. The manipulation with unknown processing can cause this issue. Recommendations: To fix this...

Sql injection

A vulnerability, which was classified as critical, has been found in risheesh debutsav. This issue affects some unknown processing. The manipulation leads to sql injection. The patch is named 7a8430df79277c613449262201cc792db894fc76. It is recommended to apply a patch to fix this issue. The...

desafio_buzz_woody SQL注入漏洞

desafiobuzzwoody is an application by Bruno Mattoso Gonçalves Personal Developer. A SQL injection vulnerability exists in desafiobuzzwoody that stems from unknown processing that operates to cause SQL injection...

Sql injection

A vulnerability was found in WebPA up to 3.1.1. It has been rated as critical. This issue affects some unknown processing. The manipulation leads to sql injection. Upgrading to version 3.1.2 is able to address this issue. The identifier of the patch is 8836c4f549181e885a68e0e7ca561fdbcbd04bf0. It...

01ACP 跨站脚本漏洞

01ACP is a central administration area for all modules of 01-Scripts.de by Michael Individual Developer. A cross-site scripting vulnerability exists in 01-Scripts 01ACP, which stems from unknown processing, where manipulating some of the parameters can lead to cross-site scripting...

PT-2023-10194 · Unknown · Glidernet Ogn-Live

Name of the Vulnerable Software and Affected Versions: glidernet ogn-live affected versions not specified Description: A critical issue has been found in glidernet ogn-live, affecting some unknown processing, which leads to sql injection. Recommendations: To fix this issue, it is recommended to...

PT-2023-15958 · Multilaser · Multilaser Re708 Re1200R4Gc-2T2R-V3

Name of the Vulnerable Software and Affected Versions: Multilaser RE708 RE1200R4GC-2T2R-V3 v3411b MUL029B Description: A vulnerability was found in the Telnet Service component, which can lead to denial of service when manipulated. The attack may be initiated remotely. This issue affects some...

PT-2022-8015 · Challenge Website +2 · Challenge Website +1

Name of the Vulnerable Software and Affected Versions: challenge website affected versions not specified Description: A critical issue affects some unknown processing, leading to sql injection. The estimated number of potentially affected devices worldwide is not available. There is no informatio...

Bienlein Cross-Site Request Forgery Vulnerability

Bienlein is a core application using FlightPHP and RedBeanHP. A security vulnerability exists in Bienlein that stems from unknown processing that manipulates to cause cross-site request forgery. No details of the vulnerability are currently available...