Lucene search
+L

51 matches found

Prion
Prion
added 2022/08/11 5:15 a.m.9 views

Design/Logic Flaw

A vulnerability, which was classified as critical, was found in SourceCodester Company Website CMS. Affected is an unknown function of the file /dashboard/add-service.php of the component Add Service Handler. The manipulation leads to unrestricted upload. It is possible to launch the attack...

7.5CVSS9.4AI score0.00601EPSS
Exploits0References1
Prion
Prion
added 2022/08/11 5:15 a.m.17 views

Out-of-bounds

A vulnerability was found in SourceCodester Company Website CMS. It has been declared as critical. This vulnerability affects unknown code of the file /dashboard/add-blog.php of the component Add Blog. The manipulation of the argument ufile leads to unrestricted upload. The attack can be initiate...

7.5CVSS9.4AI score0.00601EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2022/08/11 12:0 a.m.6 views

PT-2022-18567 · Sourcecodester · Sourcecodester Company Website Cms

Name of the Vulnerable Software and Affected Versions: SourceCodester Company Website CMS affected versions not specified Description: A problematic issue has been found in the SourceCodester Company Website CMS, affecting the processing of the file /dashboard/contact. The manipulation of the pho...

5.4CVSS5.1AI score0.0053EPSS
Exploits0References6
CNNVD
CNNVD
added 2022/08/11 12:0 a.m.6 views

Company Website CMS 代码问题漏洞

Company Website CMS is a company website/CMS by Torrahclef Personal Developer. A security vulnerability exists in Company Website CMS, which stems from an unknown function of the file /dashboard/add-service.php of the component Add Service Handler being affected, resulting in unrestricted uploads...

9.8CVSS8.1AI score0.00601EPSS
Exploits0References2
NVD
NVD
added 2022/08/09 7:15 a.m.17 views

CVE-2022-2725

A vulnerability was found in SourceCodester Company Website CMS. It has been rated as problematic. Affected by this issue is some unknown functionality of the file add-blog.php. The manipulation leads to cross site scripting. The attack may be launched remotely. VDB-205838 is the identifier...

6.1CVSS0.00417EPSS
Exploits0References1
Cvelist
Cvelist
added 2022/08/09 7:11 a.m.25 views

CVE-2022-2725 SourceCodester Company Website CMS add-blog.php cross site scripting

A vulnerability was found in SourceCodester Company Website CMS. It has been rated as problematic. Affected by this issue is some unknown functionality of the file add-blog.php. The manipulation leads to cross site scripting. The attack may be launched remotely. VDB-205838 is the identifier...

3.5CVSS6.2AI score0.00417EPSS
Exploits0References1
Prion
Prion
added 2022/08/08 1:15 p.m.13 views

Improper access control

A vulnerability was found in SourceCodester Company Website CMS and classified as critical. Affected by this issue is some unknown functionality of the file site-settings.php of the component Cookie Handler. The manipulation leads to improper access controls. The attack may be launched remotely...

4CVSS6.5AI score0.00534EPSS
Exploits1References2
NVD
NVD
added 2022/08/06 6:15 p.m.21 views

CVE-2022-2694

A vulnerability was found in SourceCodester Company Website CMS and classified as critical. This issue affects some unknown processing. The manipulation leads to unrestricted upload. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used. The identifier...

8.8CVSS0.00707EPSS
Exploits1References2
CVE
CVE
added 2022/08/06 5:21 p.m.58 views

CVE-2022-2694

CVE-2022-2694 affects SourceCodester Company Website CMS. The available documents describe a vulnerability that enables unrestricted file upload via some unknown processing, with remote initiation possible and the exploit publicly disclosed. There are no concrete details on affected versions or a...

8.8CVSS7.6AI score0.00707EPSS
Exploits1References2Affected Software1
CNNVD
CNNVD
added 2022/08/06 12:0 a.m.8 views

Company Website CMS 代码问题漏洞

Company Website CMS is a company website/CMS by Torrahclef Individual Developer. Company Website CMS is vulnerable to a code issue that originates from the operation of some unknown handler code that results in an unrestricted upload. The attack methodology is publicly available and can be...

8.8CVSS8AI score0.00707EPSS
Exploits1References4
Positive Technologies
Positive Technologies
added 2022/08/06 12:0 a.m.6 views

PT-2022-18131 · Sourcecodester · Sourcecodester Company Website Cms

Name of the Vulnerable Software and Affected Versions: SourceCodester Company Website CMS affected versions not specified Description: A critical issue was found in the SourceCodester Company Website CMS, affecting some unknown processing, which leads to unrestricted upload. The attack can be...

8.8CVSS8.6AI score0.00707EPSS
Exploits1References6
NVD
NVD
added 2022/04/05 2:15 a.m.15 views

CVE-2022-26615

A cross-site scripting XSS vulnerability in College Website Content Management System v1.0 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the User Profile Name text fields...

5.4CVSS0.00495EPSS
Exploits1References1
ATTACKERKB
ATTACKERKB
added 2022/04/05 2:15 a.m.4 views

CVE-2022-26615

A cross-site scripting XSS vulnerability in College Website Content Management System v1.0 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the User Profile Name text fields...

5.4CVSS6.3AI score0.00495EPSS
Exploits1References2
Prion
Prion
added 2022/04/05 2:15 a.m.13 views

Cross site scripting

A cross-site scripting XSS vulnerability in College Website Content Management System v1.0 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the User Profile Name text fields...

3.5CVSS5.3AI score0.00495EPSS
Exploits1References1Affected Software1
CVE
CVE
added 2022/04/05 1:18 a.m.82 views

CVE-2022-26615

CVE-2022-26615 affects the College Website Content Management System v1.0. A stored/reflected XSS vulnerability exists in the User Profile Name field that allows attackers to inject arbitrary scripts/HTML, enabling client-side script execution. The connected sources confirm the impact but do not ...

5.4CVSS5.2AI score0.00495EPSS
Exploits1References1Affected Software1
NVD
NVD
added 2022/01/24 7:15 p.m.19 views

CVE-2021-41928

SQL injection in Sourcecodester Try My Recipe Recipe Sharing Website - CMS 1.0 by oretnom23, allows attackers to execute arbitrary code via the rid parameter to the viewrecipe page...

9.8CVSS0.01881EPSS
Exploits1References1
Exploit DB
Exploit DB
added 2021/01/11 12:0 a.m.349 views

Prestashop 1.7.7.0 - 'id_product' Time Based Blind SQL Injection

Exploit Title: Prestashop 1.7.7.0 - 'idproduct' Time Based Blind SQL Injection Date: 08-01-2021 Exploit Author: Jaimin Gondaliya Vendor Homepage: https://www.prestashop.com Software Link: https://www.prestashop.com/en/download Version: Prestashop CMS - 1.7.7.0 Tested on: Windows 10 Parameter:...

7.4AI score
Exploits0
0day.today
0day.today
added 2019/08/06 12:0 a.m.27 views

Rest - Cafe and Restaurant Website CMS - (slug) SQL Injection Vulnerability

Exploit for php platform in category web applications Exploit Title: Rest - Cafe and Restaurant Website CMS - SQL Injection Exploit Author: n1x MS-WEB Vendor Homepage: https://codecanyon.net/item/rest-cafe-and-restaurant-website-cms/21630154 CWE : CWE-89 Vulnerable parameter: slug news.php GET...

7.1AI score
Exploits0
exploitpack
exploitpack
added 2019/03/21 12:0 a.m.35 views

The Company Business Website CMS - Multiple Vulnerabilities

The Company Business Website CMS - Multiple Vulnerabilities Exploit Title: The Company Business Website CMS - 'username' SQL Injection Date: 20.03.2019 Exploit Author: Ahmet Ümit BAYRAM Vendor Homepage: https://www.codester.com/items/6806/the-company-business-website-cms Demo Site:...

0.3AI score
Exploits0
Exploit DB
Exploit DB
added 2019/03/21 12:0 a.m.56 views

The Company Business Website CMS - Multiple Vulnerabilities

Exploit Title: The Company Business Website CMS - 'username' SQL Injection Date: 20.03.2019 Exploit Author: Ahmet Ümit BAYRAM Vendor Homepage: https://www.codester.com/items/6806/the-company-business-website-cms Demo Site: http://thecompany.morkocbilisim.com Version: Lastest Tested on: Kali Linux...

7.4AI score
Exploits0
Rows per page
Query Builder