PT-2025-41243

Name of the Vulnerable Software and Affected Versions SourceCodester Hotel and Lodge Management System version 1.0 Description A security issue exists in SourceCodester Hotel and Lodge Management System version 1.0. The issue allows for unrestricted file upload through manipulation of the website...

PT-2022-23861 · Unknown · Garage Management System

Name of the Vulnerable Software and Affected Versions: Garage Management System version 1.0 Description: The application manage website.php is vulnerable to Shell File Upload. An already authenticated malicious user can upload a dangerous Remote Code Execution RCE or Local Code Execution LCE...

GHSA-FFF9-M6F6-Q3MH Dolibarr SQL Injection vulnerability

SQL Injection vulnerability in Dolibarr before version 7.0.2 allows remote attackers to execute arbitrary SQL commands via the sortfield parameter to /accountancy/admin/accountmodel.php, /accountancy/admin/categorieslist.php, /accountancy/admin/journalslist.php, /admin/dict.php,...

Clinic Management System 1.0 - Authenticated Arbitrary File Upload

Exploit Title: Clinic Management System 1.0 - Authenticated Arbitrary File Upload Google Dork: N/A Date: 2020-06-02 Exploit Author: BKpatron Vendor Homepage: https://www.sourcecodester.com/php/14243/open-source-clinic-management-system-php-full-source-code.html Software Link:...

CVE-2018-9019

SQL Injection vulnerability in Dolibarr before version 7.0.2 allows remote attackers to execute arbitrary SQL commands via the sortfield parameter to /accountancy/admin/accountmodel.php, /accountancy/admin/categorieslist.php, /accountancy/admin/journalslist.php, /admin/dict.php,...

Sql injection

SQL Injection vulnerability in Dolibarr before version 7.0.2 allows remote attackers to execute arbitrary SQL commands via the sortfield parameter to /accountancy/admin/accountmodel.php, /accountancy/admin/categorieslist.php, /accountancy/admin/journalslist.php, /admin/dict.php,...

openEngine 2.0 Blind SQL Injection

Advisory: openEngine 2.0 'id' Blind SQL Injection vulnerability Advisory ID: SSCHADV2011-019 Author: Stefan Schurtz Affected Software: Successfully tested on openEngine 2.0 100226 Vendor URL: http://www.openengine.de/ Vendor Status: informed CVE-ID: - ========================== Vulnerability...

openEngine 2.0 100226 - Local File Inclusion Cross-Site Scripting

openEngine 2.0 100226 - Local File Inclusion Cross-Site Scripting SecPod Technologies www.secpod.com Title : openEngine Local File Inclusion and XSS Vulnerabilities Vendor : http://www.openengine.de Advisory : http://secpod.org/blog/?p=152 http://secpod.org/advisories/SECPODOpenengineLFIXSSVuln.t...

CVE-2009-2178

Cross-site scripting XSS vulnerability in website.php in phpDatingClub 3.7 allows remote attackers to inject arbitrary web script or HTML via the page parameter...

Cross site scripting

Cross-site scripting XSS vulnerability in website.php in phpDatingClub 3.7 allows remote attackers to inject arbitrary web script or HTML via the page parameter...

phpDatingClub 3.7 - SQL Injection Cross-Site Scripting Injection

phpDatingClub 3.7 - SQL Injection Cross-Site Scripting Injection phpDatingClub v 3.7ansubdepartmentsid SQL/XSS Injection Vulnerability Note: Algeria 2-0 Zambia Founder : ThE g0bL!N Home:WwW.Snakespc.CoM More info:http://www.w2b.ru/webapp.php?cat=phpDatingClub SQL Injection Vulnerability Exploit...

phpDatingClub (website.php page) Local File Inclusion Vulnerability

No description provided by source. phpDatingClub Local File Include Vulnerability ======================================================== = Author: Big Ben = = ======================================================== script : http://www.w2b.ru/download/phpDatingClub.zip DorK : Powered by...

phpDatingClub 3.7 - 'website.php' Local File Inclusion

phpDatingClub Local File Include Vulnerability ======================================================== = Author: Big Ben = = ======================================================== script : http://www.w2b.ru/download/phpDatingClub.zip DorK : Powered by phpDatingClub Exploit:...

phpDatingClub (website.php page) Local File Inclusion Vulnerability

Exploit for unknown platform in category web applications =================================================================== phpDatingClub website.php page Local File Inclusion Vulnerability =================================================================== phpDatingClub Local File Include...