Vendor CVEs
Itsourcecode
All CVEs
463 total · sorted by risk| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2025-0950 | 0.00 | — | 0.00 | Feb 1, 2025 | A vulnerability was found in itsourcecode Tailoring Management System 1.0 and classified as critical. This issue affects some unknown processing of the file staffview.php. The manipulation of the argument staffid leads to sql injection. The attack may be initiated remotely. The… | |||
| CVE-2025-0949 | 0.00 | — | 0.00 | Feb 1, 2025 | A vulnerability has been found in itsourcecode Tailoring Management System 1.0 and classified as critical. This vulnerability affects unknown code of the file partview.php. The manipulation of the argument typeid leads to sql injection. The attack can be initiated remotely. The… | |||
| CVE-2025-0948 | 0.00 | — | 0.00 | Feb 1, 2025 | A vulnerability, which was classified as critical, was found in itsourcecode Tailoring Management System 1.0. This affects an unknown part of the file incview.php. The manipulation of the argument incid leads to sql injection. It is possible to initiate the attack remotely. The… | |||
| CVE-2025-0947 | 0.00 | — | 0.00 | Feb 1, 2025 | A vulnerability, which was classified as critical, has been found in itsourcecode Tailoring Management System 1.0. Affected by this issue is some unknown functionality of the file expview.php. The manipulation of the argument expid leads to sql injection. The attack may be… | |||
| CVE-2025-0946 | 0.00 | — | 0.00 | Feb 1, 2025 | A vulnerability classified as critical was found in itsourcecode Tailoring Management System 1.0. Affected by this vulnerability is an unknown functionality of the file templatedelete.php. The manipulation of the argument id leads to sql injection. The attack can be launched… | |||
| CVE-2025-0945 | 0.00 | — | 0.00 | Feb 1, 2025 | A vulnerability classified as critical has been found in itsourcecode Tailoring Management System 1.0. Affected is an unknown function of the file typedelete.php. The manipulation of the argument id leads to sql injection. It is possible to launch the attack remotely. The… | |||
| CVE-2025-0944 | 0.00 | — | 0.01 | Feb 1, 2025 | A vulnerability was found in itsourcecode Tailoring Management System 1.0. It has been rated as critical. This issue affects some unknown processing of the file customerview.php. The manipulation of the argument id leads to sql injection. The attack may be initiated remotely.… | |||
| CVE-2025-0943 | 0.00 | — | 0.01 | Feb 1, 2025 | A vulnerability was found in itsourcecode Tailoring Management System 1.0. It has been declared as critical. This vulnerability affects unknown code of the file deldoc.php. The manipulation of the argument id leads to sql injection. The attack can be initiated remotely. The… | |||
| CVE-2025-0873 | 0.00 | — | 0.01 | Jan 30, 2025 | A vulnerability classified as critical was found in itsourcecode Tailoring Management System 1.0. Affected by this vulnerability is an unknown functionality of the file /customeredit.php. The manipulation of the argument id/address/fullname/phonenumber/email/city/comment leads… | |||
| CVE-2025-0872 | 0.00 | — | 0.01 | Jan 30, 2025 | A vulnerability classified as critical has been found in itsourcecode Tailoring Management System 1.0. Affected is an unknown function of the file /addpayment.php. The manipulation of the argument id/amount/desc/inccat leads to sql injection. It is possible to launch the attack… | |||
| CVE-2025-0582 | 0.00 | — | 0.01 | Jan 20, 2025 | A vulnerability classified as critical was found in itsourcecode Farm Management System up to 1.0. This vulnerability affects unknown code of the file /add-pig.php. The manipulation of the argument pigphoto leads to unrestricted upload. The attack can be initiated remotely. | |||
| CVE-2025-0561 | 0.00 | — | 0.01 | Jan 18, 2025 | A vulnerability has been found in itsourcecode Farm Management System 1.0 and classified as critical. This vulnerability affects unknown code of the file /add-pig.php. The manipulation of the argument pigno leads to sql injection. The attack can be initiated remotely. The… | |||
| CVE-2025-0540 | 0.00 | — | 0.01 | Jan 17, 2025 | A vulnerability has been found in itsourcecode Tailoring Management System 1.0 and classified as critical. This vulnerability affects unknown code of the file /expadd.php. The manipulation of the argument expcat leads to sql injection. The attack can be initiated remotely. The… | |||
| CVE-2024-12785 | 0.00 | — | 0.01 | Dec 19, 2024 | A vulnerability was found in itsourcecode Vehicle Management System 1.0. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file sendmail.php. The manipulation of the argument id leads to sql injection. The attack can be launched… | |||
| CVE-2024-12784 | 0.00 | — | 0.01 | Dec 19, 2024 | A vulnerability was found in itsourcecode Vehicle Management System 1.0. It has been classified as critical. Affected is an unknown function of the file editbill.php. The manipulation of the argument id leads to sql injection. It is possible to launch the attack remotely. The… | |||
| CVE-2024-12783 | 0.00 | — | 0.00 | Dec 19, 2024 | A vulnerability was found in itsourcecode Vehicle Management System 1.0 and classified as problematic. This issue affects some unknown processing of the file /billaction.php. The manipulation of the argument extra-cost leads to cross site scripting. The attack may be initiated… | |||
| CVE-2024-11631 | 0.00 | — | 0.01 | Nov 23, 2024 | A vulnerability was found in itsourcecode Tailoring Management System 1.0 and classified as critical. This issue affects some unknown processing of the file /expedit.php. The manipulation of the argument expcat leads to sql injection. The attack may be initiated remotely. The… | |||
| CVE-2024-11589 | 0.00 | — | 0.01 | Nov 21, 2024 | A vulnerability classified as critical was found in itsourcecode Tailoring Management System 1.0. Affected by this vulnerability is an unknown functionality of the file /expcatedit.php. The manipulation of the argument id leads to sql injection. The attack can be launched… | |||
| CVE-2024-50972 | 0.00 | — | 0.01 | Nov 13, 2024 | A SQL injection vulnerability in printtool.php of Itsourcecode Construction Management System 1.0 allows remote attackers to execute arbitrary SQL commands via the borrow_id parameter. | |||
| CVE-2024-50970 | 0.00 | — | 0.01 | Nov 13, 2024 | A SQL injection vulnerability in orderview1.php of Itsourcecode Online Furniture Shopping Project 1.0 allows remote attackers to execute arbitrary SQL commands via the id parameter. | |||
| CVE-2024-50971 | 0.00 | — | 0.01 | Nov 13, 2024 | A SQL injection vulnerability in print.php of Itsourcecode Construction Management System 1.0 allows remote attackers to execute arbitrary SQL commands via the map_id parameter. | |||
| CVE-2024-11074 | 0.00 | — | 0.01 | Nov 11, 2024 | A vulnerability classified as critical was found in itsourcecode Tailoring Management System 1.0. This vulnerability affects unknown code of the file /incadd.php. The manipulation of the argument inccat/desc/date/amount leads to sql injection. The attack can be initiated… | |||
| CVE-2024-10759 | 0.00 | — | 0.01 | Nov 4, 2024 | A vulnerability has been found in itsourcecode Farm Management System 1.0 and classified as critical. This vulnerability affects unknown code of the file /edit-pig.php. The manipulation of the argument pigno/weight/arrived/breed/remark/status leads to sql injection. The attack… | |||
| CVE-2024-10738 | 0.00 | — | 0.01 | Nov 3, 2024 | A vulnerability classified as critical was found in itsourcecode Farm Management System 1.0. Affected by this vulnerability is an unknown functionality of the file manage-breed.php. The manipulation of the argument breed leads to sql injection. The attack can be launched… | |||
| CVE-2024-10609 | 0.00 | — | 0.01 | Nov 1, 2024 | A vulnerability, which was classified as critical, was found in itsourcecode Tailoring Management System Project 1.0. This affects an unknown part of the file typeadd.php. The manipulation of the argument sex leads to sql injection. It is possible to initiate the attack… | |||
| CVE-2024-48415 | 0.00 | — | 0.00 | Oct 22, 2024 | itsourcecode Loan Management System v1.0 is vulnerable to Cross Site Scripting (XSS) via a crafted payload to the lastname, firstname, middlename, address, contact_no, email and tax_id parameters in new borrowers functionality on the Borrowers page. | |||
| CVE-2024-46300 | 0.00 | — | 0.00 | Oct 7, 2024 | itsourcecode Placement Management System 1.0 is vulnerable to Cross Site Scripting (XSS) via the Full Name field in registration.php. | |||
| CVE-2024-8611 | 0.00 | — | 0.01 | Sep 9, 2024 | A vulnerability classified as critical was found in itsourcecode Tailoring Management System 1.0. Affected by this vulnerability is an unknown functionality of the file ssms.php. The manipulation of the argument customer leads to sql injection. The attack can be launched… | |||
| CVE-2024-8570 | 0.00 | — | 0.01 | Sep 8, 2024 | A vulnerability was found in itsourcecode Tailoring Management System 1.0 and classified as critical. Affected by this issue is some unknown functionality of the file /inccatadd.php. The manipulation of the argument title leads to sql injection. The attack may be launched… | |||
| CVE-2024-8567 | 0.00 | — | 0.01 | Sep 8, 2024 | A vulnerability, which was classified as critical, has been found in itsourcecode Payroll Management System 1.0. This issue affects some unknown processing of the file /ajax.php?action=delete_deductions. The manipulation of the argument id leads to sql injection. The attack may… | |||
| CVE-2024-44587 | 0.00 | — | 0.01 | Sep 5, 2024 | itsourcecode Alton Management System 1.0 is vulnerable to SQL Injection in /noncombo_save.php via the "menu" parameter. | |||
| CVE-2024-8220 | 0.00 | — | 0.01 | Aug 27, 2024 | A vulnerability was found in itsourcecode Tailoring Management System 1.0. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file staffedit.php. The manipulation of the argument id/stafftype/address/fullname/phonenumber/salary… | |||
| CVE-2024-8171 | 0.00 | — | 0.01 | Aug 26, 2024 | A vulnerability classified as critical was found in itsourcecode Tailoring Management System 1.0. This vulnerability affects unknown code of the file staffcatedit.php. The manipulation of the argument title leads to sql injection. The attack can be initiated remotely. The… | |||
| CVE-2024-42918 | 0.00 | — | 0.00 | Aug 23, 2024 | itsourcecode Online Accreditation Management System contains a Cross Site Scripting vulnerability, which allows an attacker to execute arbitrary code via a crafted payload to the SCHOOLNAME, EMAILADDRES, CONTACTNO, COMPANYNAME and COMPANYCONTACTNO parameters in controller.php. | |||
| CVE-2024-8081 | 0.00 | — | 0.01 | Aug 22, 2024 | A vulnerability classified as critical was found in itsourcecode Payroll Management System 1.0. Affected by this vulnerability is an unknown functionality of the file login.php. The manipulation of the argument username leads to sql injection. The attack can be launched… | |||
| CVE-2024-7945 | 0.00 | — | 0.00 | Aug 20, 2024 | A vulnerability was found in itsourcecode Laravel Property Management System 1.0. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the file /admin/notes/create of the component Notes Page. The manipulation of the argument Note… | |||
| CVE-2024-7944 | 0.00 | — | 0.01 | Aug 20, 2024 | A vulnerability was found in itsourcecode Laravel Property Management System 1.0. It has been classified as critical. Affected is the function UpdateDocumentsRequest of the file DocumentsController.php. The manipulation leads to unrestricted upload. It is possible to launch the… | |||
| CVE-2024-7943 | 0.00 | — | 0.01 | Aug 20, 2024 | A vulnerability was found in itsourcecode Laravel Property Management System 1.0 and classified as critical. This issue affects the function upload of the file PropertiesController.php. The manipulation of the argument file leads to unrestricted upload. The attack may be… | |||
| CVE-2024-7913 | 0.00 | — | 0.01 | Aug 18, 2024 | A vulnerability was found in itsourcecode Billing System 1.0. It has been rated as critical. This issue affects some unknown processing of the file /addclient1.php. The manipulation of the argument lname/fname/mi/address/contact/meterReader leads to sql injection. The attack may… | |||
| CVE-2024-7839 | 0.00 | — | 0.01 | Aug 15, 2024 | A vulnerability classified as critical has been found in itsourcecode Billing System 1.0. This affects an unknown part of the file addbill.php. The manipulation of the argument owners_id leads to sql injection. It is possible to initiate the attack remotely. The exploit has been… | |||
| CVE-2024-7838 | 0.00 | — | 0.01 | Aug 15, 2024 | A vulnerability was found in itsourcecode Online Food Ordering System 1.0. It has been rated as critical. Affected by this issue is some unknown functionality of the file /addcategory.php. The manipulation of the argument cname leads to sql injection. The attack may be launched… | |||
| CVE-2024-7794 | 0.00 | — | 0.01 | Aug 14, 2024 | A vulnerability was found in itsourcecode Vehicle Management System 1.0. It has been rated as critical. Affected by this issue is some unknown functionality of the file mybill.php. The manipulation of the argument id leads to sql injection. The attack may be launched remotely.… | |||
| CVE-2024-7680 | 0.00 | — | 0.01 | Aug 11, 2024 | A vulnerability was found in itsourcecode Tailoring Management System 1.0. It has been classified as critical. This affects an unknown part of the file /incedit.php?id=4. The manipulation of the argument id/inccat/desc/date/amount leads to sql injection. It is possible to… | |||
| CVE-2024-7506 | 0.00 | — | 0.01 | Aug 6, 2024 | A vulnerability has been found in itsourcecode Tailoring Management System 1.0 and classified as critical. Affected by this vulnerability is an unknown functionality of the file /setlogo.php. The manipulation of the argument bgimg leads to unrestricted upload. The attack can be… | |||
| CVE-2024-7505 | 0.00 | — | 0.01 | Aug 6, 2024 | A vulnerability, which was classified as critical, was found in itsourcecode Bike Delivery System 1.0. Affected is an unknown function of the file contact_us_action.php. The manipulation of the argument name leads to sql injection. It is possible to launch the attack remotely.… | |||
| CVE-2024-7500 | 0.00 | — | 0.01 | Aug 6, 2024 | A vulnerability was found in itsourcecode Airline Reservation System 1.0. It has been rated as critical. Affected by this issue is the function save_settings of the file admin/admin_class.php. The manipulation of the argument img leads to unrestricted upload. The attack may be… | |||
| CVE-2024-7499 | 0.00 | — | 0.01 | Aug 6, 2024 | A vulnerability was found in itsourcecode Airline Reservation System 1.0. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file flights.php. The manipulation of the argument departure_airport_id leads to sql injection. The… | |||
| CVE-2024-7498 | 0.00 | — | 0.01 | Aug 6, 2024 | A vulnerability was found in itsourcecode Airline Reservation System 1.0. It has been classified as critical. Affected is the function login/login2 of the file /admin/login.php of the component Admin Login Page. The manipulation of the argument username leads to sql injection.… | |||
| CVE-2024-7497 | 0.00 | — | 0.01 | Aug 6, 2024 | A vulnerability was found in itsourcecode Airline Reservation System 1.0 and classified as critical. This issue affects some unknown processing of the file /admin/index.php. The manipulation of the argument page leads to file inclusion. The attack may be initiated remotely. The… | |||
| CVE-2024-7496 | 0.00 | — | 0.01 | Aug 6, 2024 | A vulnerability has been found in itsourcecode Airline Reservation System 1.0 and classified as critical. This vulnerability affects unknown code of the file /index.php. The manipulation of the argument page leads to file inclusion. The attack can be initiated remotely. The… |
- CVE-2025-0950Feb 1, 2025risk 0.00cvss —epss 0.00
A vulnerability was found in itsourcecode Tailoring Management System 1.0 and classified as critical. This issue affects some unknown processing of the file staffview.php. The manipulation of the argument staffid leads to sql injection. The attack may be initiated remotely. The…
- CVE-2025-0949Feb 1, 2025risk 0.00cvss —epss 0.00
A vulnerability has been found in itsourcecode Tailoring Management System 1.0 and classified as critical. This vulnerability affects unknown code of the file partview.php. The manipulation of the argument typeid leads to sql injection. The attack can be initiated remotely. The…
- CVE-2025-0948Feb 1, 2025risk 0.00cvss —epss 0.00
A vulnerability, which was classified as critical, was found in itsourcecode Tailoring Management System 1.0. This affects an unknown part of the file incview.php. The manipulation of the argument incid leads to sql injection. It is possible to initiate the attack remotely. The…
- CVE-2025-0947Feb 1, 2025risk 0.00cvss —epss 0.00
A vulnerability, which was classified as critical, has been found in itsourcecode Tailoring Management System 1.0. Affected by this issue is some unknown functionality of the file expview.php. The manipulation of the argument expid leads to sql injection. The attack may be…
- CVE-2025-0946Feb 1, 2025risk 0.00cvss —epss 0.00
A vulnerability classified as critical was found in itsourcecode Tailoring Management System 1.0. Affected by this vulnerability is an unknown functionality of the file templatedelete.php. The manipulation of the argument id leads to sql injection. The attack can be launched…
- CVE-2025-0945Feb 1, 2025risk 0.00cvss —epss 0.00
A vulnerability classified as critical has been found in itsourcecode Tailoring Management System 1.0. Affected is an unknown function of the file typedelete.php. The manipulation of the argument id leads to sql injection. It is possible to launch the attack remotely. The…
- CVE-2025-0944Feb 1, 2025risk 0.00cvss —epss 0.01
A vulnerability was found in itsourcecode Tailoring Management System 1.0. It has been rated as critical. This issue affects some unknown processing of the file customerview.php. The manipulation of the argument id leads to sql injection. The attack may be initiated remotely.…
- CVE-2025-0943Feb 1, 2025risk 0.00cvss —epss 0.01
A vulnerability was found in itsourcecode Tailoring Management System 1.0. It has been declared as critical. This vulnerability affects unknown code of the file deldoc.php. The manipulation of the argument id leads to sql injection. The attack can be initiated remotely. The…
- CVE-2025-0873Jan 30, 2025risk 0.00cvss —epss 0.01
A vulnerability classified as critical was found in itsourcecode Tailoring Management System 1.0. Affected by this vulnerability is an unknown functionality of the file /customeredit.php. The manipulation of the argument id/address/fullname/phonenumber/email/city/comment leads…
- CVE-2025-0872Jan 30, 2025risk 0.00cvss —epss 0.01
A vulnerability classified as critical has been found in itsourcecode Tailoring Management System 1.0. Affected is an unknown function of the file /addpayment.php. The manipulation of the argument id/amount/desc/inccat leads to sql injection. It is possible to launch the attack…
- CVE-2025-0582Jan 20, 2025risk 0.00cvss —epss 0.01
A vulnerability classified as critical was found in itsourcecode Farm Management System up to 1.0. This vulnerability affects unknown code of the file /add-pig.php. The manipulation of the argument pigphoto leads to unrestricted upload. The attack can be initiated remotely.
- CVE-2025-0561Jan 18, 2025risk 0.00cvss —epss 0.01
A vulnerability has been found in itsourcecode Farm Management System 1.0 and classified as critical. This vulnerability affects unknown code of the file /add-pig.php. The manipulation of the argument pigno leads to sql injection. The attack can be initiated remotely. The…
- CVE-2025-0540Jan 17, 2025risk 0.00cvss —epss 0.01
A vulnerability has been found in itsourcecode Tailoring Management System 1.0 and classified as critical. This vulnerability affects unknown code of the file /expadd.php. The manipulation of the argument expcat leads to sql injection. The attack can be initiated remotely. The…
- CVE-2024-12785Dec 19, 2024risk 0.00cvss —epss 0.01
A vulnerability was found in itsourcecode Vehicle Management System 1.0. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file sendmail.php. The manipulation of the argument id leads to sql injection. The attack can be launched…
- CVE-2024-12784Dec 19, 2024risk 0.00cvss —epss 0.01
A vulnerability was found in itsourcecode Vehicle Management System 1.0. It has been classified as critical. Affected is an unknown function of the file editbill.php. The manipulation of the argument id leads to sql injection. It is possible to launch the attack remotely. The…
- CVE-2024-12783Dec 19, 2024risk 0.00cvss —epss 0.00
A vulnerability was found in itsourcecode Vehicle Management System 1.0 and classified as problematic. This issue affects some unknown processing of the file /billaction.php. The manipulation of the argument extra-cost leads to cross site scripting. The attack may be initiated…
- CVE-2024-11631Nov 23, 2024risk 0.00cvss —epss 0.01
A vulnerability was found in itsourcecode Tailoring Management System 1.0 and classified as critical. This issue affects some unknown processing of the file /expedit.php. The manipulation of the argument expcat leads to sql injection. The attack may be initiated remotely. The…
- CVE-2024-11589Nov 21, 2024risk 0.00cvss —epss 0.01
A vulnerability classified as critical was found in itsourcecode Tailoring Management System 1.0. Affected by this vulnerability is an unknown functionality of the file /expcatedit.php. The manipulation of the argument id leads to sql injection. The attack can be launched…
- CVE-2024-50972Nov 13, 2024risk 0.00cvss —epss 0.01
A SQL injection vulnerability in printtool.php of Itsourcecode Construction Management System 1.0 allows remote attackers to execute arbitrary SQL commands via the borrow_id parameter.
- CVE-2024-50970Nov 13, 2024risk 0.00cvss —epss 0.01
A SQL injection vulnerability in orderview1.php of Itsourcecode Online Furniture Shopping Project 1.0 allows remote attackers to execute arbitrary SQL commands via the id parameter.
- CVE-2024-50971Nov 13, 2024risk 0.00cvss —epss 0.01
A SQL injection vulnerability in print.php of Itsourcecode Construction Management System 1.0 allows remote attackers to execute arbitrary SQL commands via the map_id parameter.
- CVE-2024-11074Nov 11, 2024risk 0.00cvss —epss 0.01
A vulnerability classified as critical was found in itsourcecode Tailoring Management System 1.0. This vulnerability affects unknown code of the file /incadd.php. The manipulation of the argument inccat/desc/date/amount leads to sql injection. The attack can be initiated…
- CVE-2024-10759Nov 4, 2024risk 0.00cvss —epss 0.01
A vulnerability has been found in itsourcecode Farm Management System 1.0 and classified as critical. This vulnerability affects unknown code of the file /edit-pig.php. The manipulation of the argument pigno/weight/arrived/breed/remark/status leads to sql injection. The attack…
- CVE-2024-10738Nov 3, 2024risk 0.00cvss —epss 0.01
A vulnerability classified as critical was found in itsourcecode Farm Management System 1.0. Affected by this vulnerability is an unknown functionality of the file manage-breed.php. The manipulation of the argument breed leads to sql injection. The attack can be launched…
- CVE-2024-10609Nov 1, 2024risk 0.00cvss —epss 0.01
A vulnerability, which was classified as critical, was found in itsourcecode Tailoring Management System Project 1.0. This affects an unknown part of the file typeadd.php. The manipulation of the argument sex leads to sql injection. It is possible to initiate the attack…
- CVE-2024-48415Oct 22, 2024risk 0.00cvss —epss 0.00
itsourcecode Loan Management System v1.0 is vulnerable to Cross Site Scripting (XSS) via a crafted payload to the lastname, firstname, middlename, address, contact_no, email and tax_id parameters in new borrowers functionality on the Borrowers page.
- CVE-2024-46300Oct 7, 2024risk 0.00cvss —epss 0.00
itsourcecode Placement Management System 1.0 is vulnerable to Cross Site Scripting (XSS) via the Full Name field in registration.php.
- CVE-2024-8611Sep 9, 2024risk 0.00cvss —epss 0.01
A vulnerability classified as critical was found in itsourcecode Tailoring Management System 1.0. Affected by this vulnerability is an unknown functionality of the file ssms.php. The manipulation of the argument customer leads to sql injection. The attack can be launched…
- CVE-2024-8570Sep 8, 2024risk 0.00cvss —epss 0.01
A vulnerability was found in itsourcecode Tailoring Management System 1.0 and classified as critical. Affected by this issue is some unknown functionality of the file /inccatadd.php. The manipulation of the argument title leads to sql injection. The attack may be launched…
- CVE-2024-8567Sep 8, 2024risk 0.00cvss —epss 0.01
A vulnerability, which was classified as critical, has been found in itsourcecode Payroll Management System 1.0. This issue affects some unknown processing of the file /ajax.php?action=delete_deductions. The manipulation of the argument id leads to sql injection. The attack may…
- CVE-2024-44587Sep 5, 2024risk 0.00cvss —epss 0.01
itsourcecode Alton Management System 1.0 is vulnerable to SQL Injection in /noncombo_save.php via the "menu" parameter.
- CVE-2024-8220Aug 27, 2024risk 0.00cvss —epss 0.01
A vulnerability was found in itsourcecode Tailoring Management System 1.0. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file staffedit.php. The manipulation of the argument id/stafftype/address/fullname/phonenumber/salary…
- CVE-2024-8171Aug 26, 2024risk 0.00cvss —epss 0.01
A vulnerability classified as critical was found in itsourcecode Tailoring Management System 1.0. This vulnerability affects unknown code of the file staffcatedit.php. The manipulation of the argument title leads to sql injection. The attack can be initiated remotely. The…
- CVE-2024-42918Aug 23, 2024risk 0.00cvss —epss 0.00
itsourcecode Online Accreditation Management System contains a Cross Site Scripting vulnerability, which allows an attacker to execute arbitrary code via a crafted payload to the SCHOOLNAME, EMAILADDRES, CONTACTNO, COMPANYNAME and COMPANYCONTACTNO parameters in controller.php.
- CVE-2024-8081Aug 22, 2024risk 0.00cvss —epss 0.01
A vulnerability classified as critical was found in itsourcecode Payroll Management System 1.0. Affected by this vulnerability is an unknown functionality of the file login.php. The manipulation of the argument username leads to sql injection. The attack can be launched…
- CVE-2024-7945Aug 20, 2024risk 0.00cvss —epss 0.00
A vulnerability was found in itsourcecode Laravel Property Management System 1.0. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the file /admin/notes/create of the component Notes Page. The manipulation of the argument Note…
- CVE-2024-7944Aug 20, 2024risk 0.00cvss —epss 0.01
A vulnerability was found in itsourcecode Laravel Property Management System 1.0. It has been classified as critical. Affected is the function UpdateDocumentsRequest of the file DocumentsController.php. The manipulation leads to unrestricted upload. It is possible to launch the…
- CVE-2024-7943Aug 20, 2024risk 0.00cvss —epss 0.01
A vulnerability was found in itsourcecode Laravel Property Management System 1.0 and classified as critical. This issue affects the function upload of the file PropertiesController.php. The manipulation of the argument file leads to unrestricted upload. The attack may be…
- CVE-2024-7913Aug 18, 2024risk 0.00cvss —epss 0.01
A vulnerability was found in itsourcecode Billing System 1.0. It has been rated as critical. This issue affects some unknown processing of the file /addclient1.php. The manipulation of the argument lname/fname/mi/address/contact/meterReader leads to sql injection. The attack may…
- CVE-2024-7839Aug 15, 2024risk 0.00cvss —epss 0.01
A vulnerability classified as critical has been found in itsourcecode Billing System 1.0. This affects an unknown part of the file addbill.php. The manipulation of the argument owners_id leads to sql injection. It is possible to initiate the attack remotely. The exploit has been…
- CVE-2024-7838Aug 15, 2024risk 0.00cvss —epss 0.01
A vulnerability was found in itsourcecode Online Food Ordering System 1.0. It has been rated as critical. Affected by this issue is some unknown functionality of the file /addcategory.php. The manipulation of the argument cname leads to sql injection. The attack may be launched…
- CVE-2024-7794Aug 14, 2024risk 0.00cvss —epss 0.01
A vulnerability was found in itsourcecode Vehicle Management System 1.0. It has been rated as critical. Affected by this issue is some unknown functionality of the file mybill.php. The manipulation of the argument id leads to sql injection. The attack may be launched remotely.…
- CVE-2024-7680Aug 11, 2024risk 0.00cvss —epss 0.01
A vulnerability was found in itsourcecode Tailoring Management System 1.0. It has been classified as critical. This affects an unknown part of the file /incedit.php?id=4. The manipulation of the argument id/inccat/desc/date/amount leads to sql injection. It is possible to…
- CVE-2024-7506Aug 6, 2024risk 0.00cvss —epss 0.01
A vulnerability has been found in itsourcecode Tailoring Management System 1.0 and classified as critical. Affected by this vulnerability is an unknown functionality of the file /setlogo.php. The manipulation of the argument bgimg leads to unrestricted upload. The attack can be…
- CVE-2024-7505Aug 6, 2024risk 0.00cvss —epss 0.01
A vulnerability, which was classified as critical, was found in itsourcecode Bike Delivery System 1.0. Affected is an unknown function of the file contact_us_action.php. The manipulation of the argument name leads to sql injection. It is possible to launch the attack remotely.…
- CVE-2024-7500Aug 6, 2024risk 0.00cvss —epss 0.01
A vulnerability was found in itsourcecode Airline Reservation System 1.0. It has been rated as critical. Affected by this issue is the function save_settings of the file admin/admin_class.php. The manipulation of the argument img leads to unrestricted upload. The attack may be…
- CVE-2024-7499Aug 6, 2024risk 0.00cvss —epss 0.01
A vulnerability was found in itsourcecode Airline Reservation System 1.0. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file flights.php. The manipulation of the argument departure_airport_id leads to sql injection. The…
- CVE-2024-7498Aug 6, 2024risk 0.00cvss —epss 0.01
A vulnerability was found in itsourcecode Airline Reservation System 1.0. It has been classified as critical. Affected is the function login/login2 of the file /admin/login.php of the component Admin Login Page. The manipulation of the argument username leads to sql injection.…
- CVE-2024-7497Aug 6, 2024risk 0.00cvss —epss 0.01
A vulnerability was found in itsourcecode Airline Reservation System 1.0 and classified as critical. This issue affects some unknown processing of the file /admin/index.php. The manipulation of the argument page leads to file inclusion. The attack may be initiated remotely. The…
- CVE-2024-7496Aug 6, 2024risk 0.00cvss —epss 0.01
A vulnerability has been found in itsourcecode Airline Reservation System 1.0 and classified as critical. This vulnerability affects unknown code of the file /index.php. The manipulation of the argument page leads to file inclusion. The attack can be initiated remotely. The…
Page 7 of 10