5 matches found
CVE-2024-1700
CVE-2024-1700 affects the keerti1924 PHP-MYSQL-User-Login-System v1.0. The vulnerability is in an unknown function of the file /signup.php where manipulating the username parameter with input such as results in a cross-site scripting (XSS) vulnerability. It is exploitable remotely and the public...
CVE-2024-1702
CVE-2024-1702 concerns a SQL injection in keerti1924 PHP-MYSQL-User-Login-System 1.0, affecting the /edit.php functionality. The issue is described as exploitable remotely and was publicly disclosed; multiple connected sources corroborate the core details (remote access, SQL injection, /edit.php)...
CVE-2024-2265
CVE-2024-2265 affects the keerti1924 PHP-MYSQL-User-Login-System 1.0. The issue is in an unknown part of login.sql and results in inclusion of sensitive information in the source code, exposing confidential data. Attacks are described as remote, with the exploit publicly disclosed. Multiple conne...
CVE-2024-1701
CVE-2024-1701 affects keerti1924’s PHP-MYSQL-User-Login-System v1.0, with the vulnerability isolated to an issue in the /edit.php file that enables improper access controls. The attack is described as remote; the exploit has been disclosed publicly. Connected sources confirm the root cause relate...
CVE-2024-2264
CVE-2024-2264 concerns the keerti1924 PHP-MYSQL-User-Login-System 1.0. Multiple connected sources confirm a SQL injection vulnerability in the /login.php file, triggered by manipulating the email parameter. The issue is described as remote in attack surface, with the exploit disclosed publicly. C...