3 matches found
CVE-2023-37628
CVE-2023-37628 affects Online Piggery Management System 1.0. The vulnerability is described as a SQL Injection, with a CVSS v3.1 base score of 9.8 (CRITICAL), requiring no privileges and no user interaction, impacting confidentiality, integrity, and availability. A PoC/exploit is referenced in a ...
CVE-2023-37629
Online Piggery Management System v1.0 is vulnerable to unauthenticated file upload via add-pig.php, caused by insufficient validation of uploaded files. An attacker can upload a PHP shell, potentially enabling remote code execution and full server compromise (unrestricted file upload widely demon...
CVE-2023-37630
Online Piggery Management System 1.0 is vulnerable to Cross Site Scripting (XSS). An unauthenticated user can POST JavaScript code to manage-breed.php, leading to persistent XSS. This is described consistently across multiple sources. The exact impact is persistent, and no exploitation details be...