VYPR

Vendor CVEs

Campcodes

All CVEs

702 total · sorted by risk
  • CVE-2023-2204Apr 21, 2023
    risk 0.00cvss epss 0.01

    A vulnerability was found in Campcodes Retro Basketball Shoes Online Store 1.0. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file faqs.php. The manipulation of the argument id leads to sql injection. The attack can be…

  • CVE-2023-2153Apr 18, 2023
    risk 0.00cvss epss 0.01

    A vulnerability was found in SourceCodester Complaint Management System 1.0 and classified as problematic. Affected by this issue is some unknown functionality of the file admin/assets/plugins/DataTables/examples/examples_support/editable_ajax.php of the component POST Parameter…

  • CVE-2023-2089Apr 15, 2023
    risk 0.00cvss epss 0.01

    A vulnerability was found in SourceCodester Complaint Management System 1.0. It has been rated as critical. This issue affects some unknown processing of the file /admin/userprofile.php of the component GET Parameter Handler. The manipulation of the argument uid leads to sql…

  • CVE-2023-2077Apr 14, 2023
    risk 0.00cvss epss 0.01

    A vulnerability, which was classified as problematic, has been found in Campcodes Online Traffic Offense Management System 1.0. This issue affects some unknown processing of the file /admin/offenses/view_details.php. The manipulation of the argument id leads to cross site…

  • CVE-2023-2076Apr 14, 2023
    risk 0.00cvss epss 0.01

    A vulnerability classified as problematic was found in Campcodes Online Traffic Offense Management System 1.0. This vulnerability affects unknown code of the file /classes/Users.phpp. The manipulation of the argument id leads to cross site scripting. The attack can be initiated…

  • CVE-2023-2075Apr 14, 2023
    risk 0.00cvss epss 0.01

    A vulnerability classified as critical has been found in Campcodes Online Traffic Offense Management System 1.0. This affects an unknown part of the file /admin/offenses/view_details.php. The manipulation of the argument id leads to sql injection. It is possible to initiate the…

  • CVE-2023-2074Apr 14, 2023
    risk 0.00cvss epss 0.01

    A vulnerability was found in Campcodes Online Traffic Offense Management System 1.0. It has been rated as critical. Affected by this issue is some unknown functionality of the file /classes/Master.php. The manipulation of the argument id leads to sql injection. The attack may be…

  • CVE-2023-2073Apr 14, 2023
    risk 0.00cvss epss 0.01

    A vulnerability was found in Campcodes Online Traffic Offense Management System 1.0. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /classes/Login.php. The manipulation of the argument password leads to sql injection. The…

  • CVE-2023-2055Apr 14, 2023
    risk 0.00cvss epss 0.01

    A vulnerability has been found in Campcodes Advanced Online Voting System 1.0 and classified as problematic. This vulnerability affects unknown code of the file /admin/config_save.php. The manipulation of the argument title leads to cross site scripting. The attack can be…

  • CVE-2023-2054Apr 14, 2023
    risk 0.00cvss epss 0.01

    A vulnerability, which was classified as critical, was found in Campcodes Advanced Online Voting System 1.0. This affects an unknown part of the file /admin/positions_delete.php. The manipulation of the argument id leads to sql injection. It is possible to initiate the attack…

  • CVE-2023-2053Apr 14, 2023
    risk 0.00cvss epss 0.01

    A vulnerability, which was classified as critical, has been found in Campcodes Advanced Online Voting System 1.0. Affected by this issue is some unknown functionality of the file /admin/candidates_row.php. The manipulation of the argument id leads to sql injection. The attack…

  • CVE-2023-2052Apr 14, 2023
    risk 0.00cvss epss 0.01

    A vulnerability classified as critical was found in Campcodes Advanced Online Voting System 1.0. Affected by this vulnerability is an unknown functionality of the file /admin/ballot_down.php. The manipulation of the argument id leads to sql injection. The attack can be launched…

  • CVE-2023-2051Apr 14, 2023
    risk 0.00cvss epss 0.01

    A vulnerability classified as critical has been found in Campcodes Advanced Online Voting System 1.0. Affected is an unknown function of the file /admin/positions_row.php. The manipulation of the argument id leads to sql injection. It is possible to launch the attack remotely.…

  • CVE-2023-2050Apr 14, 2023
    risk 0.00cvss epss 0.01

    A vulnerability was found in Campcodes Advanced Online Voting System 1.0. It has been rated as critical. This issue affects some unknown processing of the file /admin/positions_add.php. The manipulation of the argument description leads to sql injection. The attack may be…

  • CVE-2023-2049Apr 14, 2023
    risk 0.00cvss epss 0.01

    A vulnerability was found in Campcodes Advanced Online Voting System 1.0. It has been declared as critical. This vulnerability affects unknown code of the file /admin/ballot_up.php. The manipulation of the argument id leads to sql injection. The attack can be initiated remotely.…

  • CVE-2023-2048Apr 14, 2023
    risk 0.00cvss epss 0.01

    A vulnerability was found in Campcodes Advanced Online Voting System 1.0. It has been classified as critical. This affects an unknown part of the file /admin/voters_row.php. The manipulation of the argument id leads to sql injection. It is possible to initiate the attack…

  • CVE-2023-2047Apr 14, 2023
    risk 0.00cvss epss 0.01

    A vulnerability was found in Campcodes Advanced Online Voting System 1.0 and classified as critical. Affected by this issue is some unknown functionality of the file login.php. The manipulation of the argument voter leads to sql injection. The attack may be launched remotely.…

  • CVE-2023-2038Apr 14, 2023
    risk 0.00cvss epss 0.01

    A vulnerability was found in Campcodes Video Sharing Website 1.0. It has been declared as critical. This vulnerability affects unknown code of the file admin_class.php. The manipulation of the argument email leads to sql injection. The attack can be initiated remotely. The…

  • CVE-2023-2037Apr 14, 2023
    risk 0.00cvss epss 0.01

    A vulnerability was found in Campcodes Video Sharing Website 1.0. It has been classified as critical. This affects an unknown part of the file watch.php. The manipulation of the argument code leads to sql injection. It is possible to initiate the attack remotely. The exploit has…

  • CVE-2023-2036Apr 14, 2023
    risk 0.00cvss epss 0.01

    A vulnerability was found in Campcodes Video Sharing Website 1.0 and classified as critical. Affected by this issue is some unknown functionality of the file upload.php. The manipulation of the argument id leads to sql injection. The attack may be launched remotely. The exploit…

  • CVE-2023-2035Apr 14, 2023
    risk 0.00cvss epss 0.01

    A vulnerability has been found in Campcodes Video Sharing Website 1.0 and classified as critical. Affected by this vulnerability is an unknown functionality of the file signup.php. The manipulation of the argument id leads to sql injection. The attack can be launched remotely.…

  • CVE-2023-1984Apr 11, 2023
    risk 0.00cvss epss 0.01

    A vulnerability classified as critical was found in SourceCodester Complaint Management System 1.0. This vulnerability affects unknown code of the file /users/check_availability.php of the component POST Parameter Handler. The manipulation of the argument email leads to sql…

  • CVE-2023-1363Mar 13, 2023
    risk 0.00cvss epss 0.01

    A vulnerability, which was classified as problematic, was found in SourceCodester Computer Parts Sales and Inventory System 1.0. Affected is an unknown function of the component Add User Account. The manipulation of the argument username leads to cross site scripting. It is…

  • CVE-2023-1351Mar 11, 2023
    risk 0.00cvss epss 0.01

    A vulnerability classified as critical has been found in SourceCodester Computer Parts Sales and Inventory System 1.0. This affects an unknown part of the file cust_transac.php. The manipulation of the argument phonenumber leads to sql injection. It is possible to initiate the…

  • CVE-2023-1179Mar 5, 2023
    risk 0.00cvss epss 0.01

    A vulnerability, which was classified as problematic, was found in SourceCodester Computer Parts Sales and Inventory System 1.0. Affected is an unknown function of the component Add Supplier Handler. The manipulation of the argument company_name/province/city/phone_number leads…

  • CVE-2023-1131Mar 1, 2023
    risk 0.00cvss epss 0.01

    A vulnerability has been found in SourceCodester Computer Parts Sales and Inventory System 1.0 and classified as problematic. This vulnerability affects unknown code of the file customer.php. The manipulation of the argument FIRST_NAME/LAST_NAME/PHONE_NUMBER leads to cross site…

  • CVE-2023-1130Mar 1, 2023
    risk 0.00cvss epss 0.01

    A vulnerability, which was classified as critical, was found in SourceCodester Computer Parts Sales and Inventory System 1.0. This affects an unknown part of the file processlogin. The manipulation of the argument user leads to sql injection. It is possible to initiate the…

  • CVE-2023-0283Jan 13, 2023
    risk 0.00cvss epss 0.01

    A vulnerability classified as critical has been found in SourceCodester Online Flight Booking Management System. This affects an unknown part of the file review_search.php of the component POST Parameter Handler. The manipulation of the argument txtsearch leads to sql injection.…

  • CVE-2023-0281Jan 13, 2023
    risk 0.00cvss epss 0.01

    A vulnerability was found in SourceCodester Online Flight Booking Management System. It has been rated as critical. Affected by this issue is some unknown functionality of the file judge_panel.php. The manipulation of the argument subevent_id leads to sql injection. The attack…

  • CVE-2023-0245Jan 12, 2023
    risk 0.00cvss epss 0.01

    A vulnerability, which was classified as critical, has been found in SourceCodester Online Flight Booking Management System. This issue affects some unknown processing of the file add_contestant.php. The manipulation of the argument add_contestant leads to sql injection. The…

  • CVE-2022-40049Jan 6, 2023
    risk 0.00cvss epss 0.01

    SQL injection vulnerability in sourcecodester Theme Park Ticketing System 1.0 allows remote attackers to view sensitive information via the id parameter to the /tpts/manage_user.php page.

  • CVE-2022-2842Aug 22, 2022
    risk 0.00cvss epss 0.01

    A vulnerability classified as critical has been found in SourceCodester Gym Management System. This affects an unknown part of the file login.php. The manipulation of the argument user_email leads to sql injection. It is possible to initiate the attack remotely. The exploit has…

  • CVE-2022-35162Aug 5, 2022
    risk 0.00cvss epss 0.00

    Complete Online Job Search System v1.0 was discovered to contain a cross-site scripting (XSS) vulnerability via the CATEGORY parameter at /category/controller.php?action=edit.

  • CVE-2021-46824Jun 23, 2022
    risk 0.00cvss epss 0.01

    Cross Site Scripting (XSS) vulnerability in sourcecodester School File Management System 1.0 via the Lastname parameter to the Update Account form in student_profile.php.

  • CVE-2021-29055Jun 23, 2022
    risk 0.00cvss epss 0.01

    Cross Site Scripting (XSS) vulnerability in sourcecodester School File Management System 1.0 via the Firtstname parameter to the Update Account form in student_profile.php.

  • CVE-2022-32302Jun 15, 2022
    risk 0.00cvss epss 0.01

    Theme Park Ticketing System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at edit_ticket.php.

  • CVE-2022-32019Jun 2, 2022
    risk 0.00cvss epss 0.02

    Car Rental Management System v1.0 is vulnerable to Arbitrary code execution via car-rental-management-system/admin/ajax.php?action=save_car.

  • CVE-2022-32020Jun 2, 2022
    risk 0.00cvss epss 0.02

    Car Rental Management System v1.0 is vulnerable to Arbitrary code execution via ip/car-rental-management-system/admin/ajax.php?action=save_settings.

  • CVE-2022-32021Jun 2, 2022
    risk 0.00cvss epss 0.01

    Car Rental Management System v1.0 is vulnerable to SQL Injection via /car-rental-management-system/admin/manage_movement.php?id=.

  • CVE-2022-32027Jun 2, 2022
    risk 0.00cvss epss 0.01

    Car Rental Management System v1.0 is vulnerable to SQL Injection via /car-rental-management-system/admin/index.php?page=manage_car&id=.

  • CVE-2022-32008Jun 2, 2022
    risk 0.00cvss epss 0.01

    Complete Online Job Search System v1.0 is vulnerable to SQL Injection via eris/admin/vacancy/index.php?view=edit&id=.

  • CVE-2022-32013Jun 2, 2022
    risk 0.00cvss epss 0.01

    Complete Online Job Search System v1.0 is vulnerable to SQL Injection via eris/admin/category/index.php?view=edit&id=.

  • CVE-2022-32014Jun 2, 2022
    risk 0.00cvss epss 0.01

    Complete Online Job Search System v1.0 is vulnerable to SQL Injection via /eris/index.php?q=result&searchfor=byfunction.

  • CVE-2022-32016Jun 2, 2022
    risk 0.00cvss epss 0.01

    Complete Online Job Search System v1.0 is vulnerable to SQL Injection via /eris/index.php?q=result&searchfor=bycompany.

  • CVE-2021-43110Mar 29, 2022
    risk 0.00cvss epss 0.01

    An Access Conrol vulnerability exists in PuneethReddyHC online-shopping-system as of 11/01/2021 in add_products.

  • CVE-2021-43109Mar 29, 2022
    risk 0.00cvss epss 0.01

    An SQL Injection vulnerability exits in PuneethReddyHC online-shopping-system as of 11/01/2021 via the p parameter in product.php.

  • CVE-2022-26171Mar 2, 2022
    risk 0.00cvss epss 0.01

    Bank Management System v1.o was discovered to contain a SQL injection vulnerability via the email parameter.

  • CVE-2021-42223Oct 13, 2021
    risk 0.00cvss epss 0.01

    Cross Site Scripting (XSS).vulnerability exists in Online DJ Booking Management System 1.0 in view-booking-detail.php.

  • CVE-2021-25209Jul 22, 2021
    risk 0.00cvss epss 0.01

    SQL injection vulnerability in SourceCodester Theme Park Ticketing System v 1.0 allows remote attackers to execute arbitrary SQL statements, via the id parameter to view_user.php .

  • CVE-2021-29387Apr 28, 2021
    risk 0.00cvss epss 0.01

    Multiple stored cross-site scripting (XSS) vulnerabilities in Sourcecodester Equipment Inventory System 1.0 allow remote attackers to inject arbitrary javascript via any "Add" sections, such as Add Item , Employee and Position or others in the Name Parameters.

Page 14 of 15