51 matches found
Design/Logic Flaw
A vulnerability, which was classified as critical, was found in SourceCodester Company Website CMS. Affected is an unknown function of the file /dashboard/add-service.php of the component Add Service Handler. The manipulation leads to unrestricted upload. It is possible to launch the attack...
Out-of-bounds
A vulnerability was found in SourceCodester Company Website CMS. It has been declared as critical. This vulnerability affects unknown code of the file /dashboard/add-blog.php of the component Add Blog. The manipulation of the argument ufile leads to unrestricted upload. The attack can be initiate...
PT-2022-18567 · Sourcecodester · Sourcecodester Company Website Cms
Name of the Vulnerable Software and Affected Versions: SourceCodester Company Website CMS affected versions not specified Description: A problematic issue has been found in the SourceCodester Company Website CMS, affecting the processing of the file /dashboard/contact. The manipulation of the pho...
Company Website CMS 代码问题漏洞
Company Website CMS is a company website/CMS by Torrahclef Personal Developer. A security vulnerability exists in Company Website CMS, which stems from an unknown function of the file /dashboard/add-service.php of the component Add Service Handler being affected, resulting in unrestricted uploads...
CVE-2022-2725
A vulnerability was found in SourceCodester Company Website CMS. It has been rated as problematic. Affected by this issue is some unknown functionality of the file add-blog.php. The manipulation leads to cross site scripting. The attack may be launched remotely. VDB-205838 is the identifier...
CVE-2022-2725 SourceCodester Company Website CMS add-blog.php cross site scripting
A vulnerability was found in SourceCodester Company Website CMS. It has been rated as problematic. Affected by this issue is some unknown functionality of the file add-blog.php. The manipulation leads to cross site scripting. The attack may be launched remotely. VDB-205838 is the identifier...
Improper access control
A vulnerability was found in SourceCodester Company Website CMS and classified as critical. Affected by this issue is some unknown functionality of the file site-settings.php of the component Cookie Handler. The manipulation leads to improper access controls. The attack may be launched remotely...
CVE-2022-2694
A vulnerability was found in SourceCodester Company Website CMS and classified as critical. This issue affects some unknown processing. The manipulation leads to unrestricted upload. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used. The identifier...
CVE-2022-2694
CVE-2022-2694 affects SourceCodester Company Website CMS. The available documents describe a vulnerability that enables unrestricted file upload via some unknown processing, with remote initiation possible and the exploit publicly disclosed. There are no concrete details on affected versions or a...
Company Website CMS 代码问题漏洞
Company Website CMS is a company website/CMS by Torrahclef Individual Developer. Company Website CMS is vulnerable to a code issue that originates from the operation of some unknown handler code that results in an unrestricted upload. The attack methodology is publicly available and can be...
PT-2022-18131 · Sourcecodester · Sourcecodester Company Website Cms
Name of the Vulnerable Software and Affected Versions: SourceCodester Company Website CMS affected versions not specified Description: A critical issue was found in the SourceCodester Company Website CMS, affecting some unknown processing, which leads to unrestricted upload. The attack can be...
CVE-2022-26615
A cross-site scripting XSS vulnerability in College Website Content Management System v1.0 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the User Profile Name text fields...
CVE-2022-26615
A cross-site scripting XSS vulnerability in College Website Content Management System v1.0 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the User Profile Name text fields...
Cross site scripting
A cross-site scripting XSS vulnerability in College Website Content Management System v1.0 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the User Profile Name text fields...
CVE-2022-26615
CVE-2022-26615 affects the College Website Content Management System v1.0. A stored/reflected XSS vulnerability exists in the User Profile Name field that allows attackers to inject arbitrary scripts/HTML, enabling client-side script execution. The connected sources confirm the impact but do not ...
CVE-2021-41928
SQL injection in Sourcecodester Try My Recipe Recipe Sharing Website - CMS 1.0 by oretnom23, allows attackers to execute arbitrary code via the rid parameter to the viewrecipe page...
Prestashop 1.7.7.0 - 'id_product' Time Based Blind SQL Injection
Exploit Title: Prestashop 1.7.7.0 - 'idproduct' Time Based Blind SQL Injection Date: 08-01-2021 Exploit Author: Jaimin Gondaliya Vendor Homepage: https://www.prestashop.com Software Link: https://www.prestashop.com/en/download Version: Prestashop CMS - 1.7.7.0 Tested on: Windows 10 Parameter:...
Rest - Cafe and Restaurant Website CMS - (slug) SQL Injection Vulnerability
Exploit for php platform in category web applications Exploit Title: Rest - Cafe and Restaurant Website CMS - SQL Injection Exploit Author: n1x MS-WEB Vendor Homepage: https://codecanyon.net/item/rest-cafe-and-restaurant-website-cms/21630154 CWE : CWE-89 Vulnerable parameter: slug news.php GET...
The Company Business Website CMS - Multiple Vulnerabilities
The Company Business Website CMS - Multiple Vulnerabilities Exploit Title: The Company Business Website CMS - 'username' SQL Injection Date: 20.03.2019 Exploit Author: Ahmet Ümit BAYRAM Vendor Homepage: https://www.codester.com/items/6806/the-company-business-website-cms Demo Site:...
The Company Business Website CMS - Multiple Vulnerabilities
Exploit Title: The Company Business Website CMS - 'username' SQL Injection Date: 20.03.2019 Exploit Author: Ahmet Ümit BAYRAM Vendor Homepage: https://www.codester.com/items/6806/the-company-business-website-cms Demo Site: http://thecompany.morkocbilisim.com Version: Lastest Tested on: Kali Linux...