9 matches found
CVE-2024-28456
The vulnerability is a Cross Site Scripting (XSS) issue in Campcodes Online Marriage Registration System v1.0. A malicious user can supply crafted input in text fields of the marriage registration form to execute arbitrary code in the context of a victim’s browser. The Red Hat/NVD/CVE records con...
CVE-2024-2774
CVE-2024-2774 targets Campcodes Online Marriage Registration System 1.0. The vulnerability is in the /user/search.php endpoint, where manipulating the searchdata parameter leads to an SQL injection. It can be exploited remotely, with the exploit disclosed publicly. Public sources indicate potenti...
CVE-2024-2775
CVE-2024-2775 affects Campcodes Online Marriage Registration System 1.0. The vulnerability is a cross-site scripting flaw in the /user/user-profile.php file, triggered by manipulating the lname parameter. It can be exploited remotely and has been publicly disclosed. The issue remains in unknown p...
CVE-2024-2773
CVE-2024-2773 affects Campcodes Online Marriage Registration System 1.0, with a Cross-Site Scripting (XSS) vulnerability in the /user/search.php file via the searchdata parameter. Root cause: input manipulation enables script execution, allowing remote initiation. Affected component: the search i...
CVE-2024-2778
CVE-2024-2778 affects Campcodes Online Marriage Registration System 1.0, specifically the /admin/search.php endpoint. The vulnerability arises from unsanitized input in the searchdata parameter, enabling cross-site scripting (XSS). Exploitation may be performed remotely and the exploit has been d...
CVE-2024-2780
CVE-2024-2780 affects Campcodes Online Marriage Registration System 1.0. A cross-site scripting flaw exists in the admin-profile.php file via the adminname parameter, exploitable remotely. Public disclosure is noted. Red Hat and other sources corroborate the same issue. The root cause is input ha...
CVE-2024-2779
Campcodes Online Marriage Registration System 1.0 is affected by a cross-site scripting (XSS) issue in the /admin/application-bwdates-reports-details.php file, caused by manipulation of the fromdate parameter. Exploitation is possible remotely and the exploit has been disclosed publicly. Several ...
CVE-2024-2776
CVE-2024-2776 affects Campcodes Online Marriage Registration System 1.0. The vulnerability is in an unknown function of /admin/search.php where manipulation of the searchdata parameter enables SQL injection. It is remotely exploitable and has been publicly disclosed (VDB-257610). Several connecte...
CVE-2024-2777
CVE-2024-2777 affects Campcodes/PHPGurukul Online Marriage Registration System 1.0. The vulnerability resides in the /admin/application-bwdates-reports-details.php page where the fromdate parameter is manipulated to trigger an SQL injection. A remote attack is possible and exploits have been publ...