Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

8 matches found

NVD
NVDadded 2024/04/15 7:15 p.m.9 views

CVE-2024-28557

SQL Injection vulnerability in Sourcecodester php task management system v1.0, allows remote attackers to execute arbitrary code, escalate privileges, and obtain sensitive information via crafted payload to update-admin.php...

9.8CVSS8.1AI score0.01233EPSS
Exploits1References2
Vulnrichment
Vulnrichmentadded 2024/04/15 12:0 a.m.11 views

CVE-2024-28557

SQL Injection vulnerability in Sourcecodester php task management system v1.0, allows remote attackers to execute arbitrary code, escalate privileges, and obtain sensitive information via crafted payload to update-admin.php...

8.5AI score0.01233EPSS
Exploits1References2
Cvelist
Cvelistadded 2024/04/15 12:0 a.m.16 views

CVE-2024-28557

SQL Injection vulnerability in Sourcecodester php task management system v1.0, allows remote attackers to execute arbitrary code, escalate privileges, and obtain sensitive information via crafted payload to update-admin.php...

8.4AI score0.01233EPSS
Exploits1References2
CVE
CVEadded 2024/04/15 12:0 a.m.47 views

CVE-2024-28557

CVE-2024-28557 affects Sourcecodester PHP Task Management System v1.0, with a SQL Injection vulnerability in update-admin.php. The underlying cause is improper input handling that allows an attacker to inject SQL through crafted payloads, enabling remote code execution, privilege escalation, and ...

9.8CVSS8.4AI score0.01233EPSS
Exploits1References2Affected Software1
Exploit DB
Exploit DBadded 2024/03/20 12:0 a.m.364 views

Employee Management System 1.0 - 'admin_id' SQLi

Exploit Title: Employee Management System 1.0 - 'adminid' SQLi Date: 20-03-2024 Exploit Author: Shubham Pandey Vendor Homepage: https://www.sourcecodester.com Software Link: https://www.sourcecodester.com/php/17217/employee-management-system-php-and-mysql-free-download.html Version: 1.0 Tested on...

9.8CVSS6.8AI score0.01229EPSS
Exploits4
Cvelist
Cvelistadded 2024/03/19 12:0 a.m.37 views

CVE-2024-28595

SQL Injection vulnerability in Employee Management System v1.0 allows attackers to run arbitrary SQL commands via the adminid parameter in update-admin.php...

8.2AI score0.01229EPSS
Exploits4References1
Cvelist
Cvelistadded 2024/03/18 2:0 a.m.28 views

CVE-2024-2576 SourceCodester Employee Task Management System update-admin.php authorization

A vulnerability, which was classified as critical, was found in SourceCodester Employee Task Management System 1.0. This affects an unknown part of the file /update-admin.php. The manipulation of the argument adminid leads to authorization bypass. It is possible to initiate the attack remotely. T...

7.5CVSS7.4AI score0.00669EPSS
Exploits0References3
Vulnrichment
Vulnrichmentadded 2024/03/18 2:0 a.m.16 views

CVE-2024-2576 SourceCodester Employee Task Management System update-admin.php authorization

A vulnerability, which was classified as critical, was found in SourceCodester Employee Task Management System 1.0. This affects an unknown part of the file /update-admin.php. The manipulation of the argument adminid leads to authorization bypass. It is possible to initiate the attack remotely. T...

7.5CVSS6.9AI score0.00669EPSS
Exploits0References3
Rows per page
Query Builder