PT-2025-21666 · Unknown · Phpgurukul Daily Expense Tracker System

Name of the Vulnerable Software and Affected Versions: PHPGurukul Daily Expense Tracker System version 1.1 Description: A critical issue was found in the system, affecting some unknown functionality of the file /user-profile.php. The manipulation of the fullname and contactnumber arguments leads ...

CVE-2024-2775 Campcodes Online Marriage Registration System user-profile.php cross site scripting

A vulnerability, which was classified as problematic, has been found in Campcodes Online Marriage Registration System 1.0. This issue affects some unknown processing of the file /user/user-profile.php. The manipulation of the argument lname leads to cross site scripting. The attack may be initiat...

Design/Logic Flaw

PHPGurukul Daily Expense Tracker System 1.0 is vulnerable to stored XSS via the user-profile.php Full Name field...

Cross site scripting

A Cross-site scripting XSS vulnerability in 'user-profile.php' in SourceCodester Daily Tracker System v1.0 allows remote attackers to inject arbitrary web script or HTML via the 'fullname' parameter...

CVE-2020-24194

A Cross-site scripting XSS vulnerability in 'user-profile.php' in SourceCodester Daily Tracker System v1.0 allows remote attackers to inject arbitrary web script or HTML via the 'fullname' parameter...

CVE-2020-24194

CVE-2020-24194 is an XSS vulnerability in SourceCodester Daily Tracker System v1.0, exploitable via the fullname parameter in user-profile.php to inject arbitrary web script/HTML. The provided connected documents confirm the issue but do not specify affected versions beyond v1.0, nor provide a re...

CVE-2017-17605

Consumer Complaints Clone Script 1.0 has SQL Injection via the other-user-profile.php id parameter...

CVE-2014-3544

CVE-2014-3544 is a cross-site scripting (XSS) vulnerability in Moodle’s user/profile.php that enables remote authenticated users to inject arbitrary script or HTML via the Skype ID profile field. Affected versions include Moodle up to 2.3.11 and 2.4.x before 2.4.11, 2.5.x before 2.5.7, 2.6.x befo...

2daybiz Multi Level Marketing SQL Injection Vulnerability

Exploit for php platform in category web applications 1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0 0 1 1 /' \ /'\ /\ \ /'\ 0 0 /, \ /\/\ \ \ \ \ ,/\ /\ \ 1 1 //\ \ /' \ /\ //\ Exploit database separated by exploit 0 0 // type local, remote, DoS, etc. 1 1 1 0...

CVE-2010-2508

SQL injection vulnerability in user-profile.php in 2daybiz Video Community Portal Script allows remote attackers to execute arbitrary SQL commands via the userid parameter...

Sql injection

SQL injection vulnerability in user-profile.php in 2daybiz Video Community Portal Script allows remote attackers to execute arbitrary SQL commands via the userid parameter...

CVE-2010-2508

CVE-2010-2508 describes a SQL injection in the 2daybiz Video Community Portal Script, specifically in the file user-profile.php, where the userid parameter can be manipulated by an attacker to execute arbitrary SQL commands. The vulnerability is documented across multiple sources (NVD, Red Hat ad...

CVE-2010-2508

SQL injection vulnerability in user-profile.php in 2daybiz Video Community Portal Script allows remote attackers to execute arbitrary SQL commands via the userid parameter...

2daybiz Video Community Portal SQL Injection

$------------------------------------------------------------------------------------------------------------------- $ 2daybiz Video Community portal"user-profile.php" SQL injection $ Author : Sangteamtham $ Home : Hcegroup.net $ Download :http://www.2daybiz.com/videocommunityportalscript.html $...

2DayBiz Video Community Portal - 'user-profile.php' SQL Injection

$------------------------------------------------------------------------------------------------------------------- $ 2daybiz Video Community portal"user-profile.php" SQL injection $ Author : Sangteamtham $ Home : Hcegroup.net $ Download :http://www.2daybiz.com/videocommunityportalscript.html $...