4 matches found
CVE-2023-2089
CVE-2023-2089 affects SourceCodester Complaint Management System 1.0. The issue is a SQL injection in the GET Parameter Handler for the file /admin/userprofile.php via the uid parameter. Public disclosure and remote feasibility are indicated. Exploitation status is reported in multiple sources; C...
CVE-2023-2153
CVE-2023-2153 affects SourceCodester Complaint Management System 1.0. The vulnerability is in the POST Parameter Handler, specifically the file path admin/assets/plugins/DataTables/examples/examples_support/editable_ajax.php. The issue is cross-site scripting (XSS) triggered by manipulating the v...
CVE-2023-2243
CVE-2023-2243 affects SourceCodester Complaint Management System 1.0, specifically the file users/registration.php in the POST Parameter Handler . The root cause is manipulation of the fullname parameter, enabling SQL injection . The issue is described as exploitable remotely and the exploit has ...
CVE-2023-1984
CVE-2023-1984 affects SourceCodester Complaint Management System v1.0. The vulnerability is in the POST Parameter Handler – specifically the file /users/check_availability.php where the email parameter can be manipulated to perform SQL injection. Exploitation appears remote and has been publicly ...