3 matches found
CVE-2026-30571
CVE-2026-30571 affects SourceCodester Sales and Inventory System 1.0, specifically the view_category.php file where the limit parameter is not sanitized, enabling a reflected XSS. An attacker can craft a URL to inject arbitrary web script/HTML, which would execute in a victim’s browser. The explo...
CVE-2022-29990
Online Sports Complex Booking System 1.0 is vulnerable to SQL Injection via /scbs/admin/categories/viewcategory.php?id=...
Joomla! JEXTN Video Gallery extension SQL injection vulnerability
Joomla! is the U.S. Open Source Matters team developed a set of open source content management system CMS, the system provides RSS feeds, site search and other features . JEXTN Video Gallery extension is used in one of the video online sharing plug-ins. A SQL injection vulnerability exists in...