6 matches found
CVE-2024-2917
CVE-2024-2917 affects Campcodes House Rental Management System 1.0. The vulnerability is a file inclusion in index.php caused by manipulation of the page parameter, allowing remote exploitation. Multiple sources confirm the issue and that the exploit has been disclosed publicly. The root cause is...
CVE-2024-3697
CVE-2024-3697 concerns Campcodes House Rental Management System 1.0. The vulnerability is an SQL injection in the file manage_tenant.php (parameter id ), enabling remote exploitation. The issue is described as critical with potential for unauthenticated or low-privilege access depending on contex...
CVE-2024-2916
Campcodes House Rental Management System 1.0 is affected by a SQL injection in ajax.php via the username parameter. The vulnerability is exploitable remotely and has public exploit disclosure (VDB-257982). Red Hat and other sources confirm the issue; PTSecurity suggests remote-executable SQL due ...
CVE-2024-3698
CVE-2024-3698 affects Campcodes House Rental Management System 1.0, specifically the function manage_payment.php. The vulnerability arises from unsafely handling the id parameter, enabling SQL injection. It is exploitable remotely and has been publicly disclosed. The PRIMARY impact is information...
CVE-2024-3696
CVE-2024-3696 affects Campcodes House Rental Management System 1.0. The vulnerability is an SQL injection in the view_payment.php file, triggered by manipulating the id parameter. It is described as remote and high-severity (NVD/CVSS consensus varies, with base scores up to 8.8 in some sources). ...
CVE-2024-3719
The CVE-2024-3719 entry pertains to Campcodes House Rental Management System 1.0, with a vulnerability in the ajax.php file where modifying the id parameter enables SQL injection. The affected component is the id parameter in ajax.php; root cause is improper handling of input leading to SQL injec...