Online Id Generator System Security Vulnerabilities and Issues — Online Id Generator System CVE List

Lucene search

Oretnom23Online Id Generator System

7 matches found

CVE•added 2025/04/16 5:15 p.m.•45 views

CVE-2024-40074

Sourcecodester Online ID Generator System 1.0 was discovered to contain Stored Cross Site Scripting (XSS) via id_generator/classes/SystemSettings.php?f=update_settings, and the point of vulnerability is in the POST parameter 'short_name'.

4.8CVSS6.1AI score0.00046EPSS

CVE•added 2025/04/16 5:15 p.m.•44 views

CVE-2024-40072

Sourcecodester Online ID Generator System 1.0 was discovered to contain a SQL injection vulnerability via the id parameter at id_generator/admin/?page=generate/index&id=1.

9.8CVSS7.9AI score0.00049EPSS

CVE•added 2025/04/16 5:15 p.m.•44 views

CVE-2024-40073

Sourcecodester Online ID Generator System 1.0 was discovered to contain a SQL injection vulnerability via the template parameter at id_generator/admin/?page=generate&template=4.

9.8CVSS8.3AI score0.00049EPSS

CVE•added 2025/04/16 5:15 p.m.•41 views

CVE-2024-40069

Sourcecodester Online ID Generator System 1.0 was discovered to contain Stored Cross Site Scripting (XSS) via id_generator/classes/Users.php?f=save, and the point of vulnerability is in the POST parameter 'firstname' and 'lastname'.

5.4CVSS6.4AI score0.00039EPSS

CVE•added 2025/04/16 5:15 p.m.•40 views

CVE-2024-40068

Sourcecodester Online ID Generator System 1.0 was discovered to contain a SQL injection vulnerability via the id parameter at id_generator/admin/?page=templates/manage_template&id=1.

5.9CVSS8.3AI score0.00025EPSS

CVE•added 2025/04/16 5:15 p.m.•40 views

CVE-2024-40070

Sourcecodester Online ID Generator System 1.0 was discovered to contain an arbitrary file upload vulnerability via id_generator/classes/Users.php?f=save. This vulnerability allows attackers to execute arbitrary code via a crafted PHP file.

5.1CVSS8.3AI score0.00034EPSS

CVE•added 2025/04/16 5:15 p.m.•37 views

CVE-2024-40071

Sourcecodester Online ID Generator System 1.0 was discovered to contain an arbitrary file upload vulnerability via id_generator/classes/SystemSettings.php?f=update_settings. This vulnerability allows attackers to execute arbitrary code via a crafted PHP file.

9.8CVSS8.3AI score0.00134EPSS