Vendor CVEs
Oretnom23
All CVEs
440 total · sorted by risk| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2023-2594 | 0.00 | — | 0.01 | May 9, 2023 | A vulnerability, which was classified as critical, was found in SourceCodester Food Ordering Management System 1.0. Affected is an unknown function of the component Registration. The manipulation of the argument username leads to sql injection. It is possible to launch the… | |||
| CVE-2023-30077 | 0.00 | — | 0.01 | May 4, 2023 | Judging Management System v1.0 by oretnom23 was discovered to vulnerable to SQL injection via /php-jms/review_result.php?mainevent_id=, mainevent_id. | |||
| CVE-2023-30204 | 0.00 | — | 0.01 | May 3, 2023 | Judging Management System v1.0 was discovered to contain a SQL injection vulnerability via the judge_id parameter at /php-jms/edit_judge.php. | |||
| CVE-2023-2413 | 0.00 | — | 0.01 | Apr 29, 2023 | A vulnerability was found in SourceCodester AC Repair and Services System 1.0. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /admin/bookings/manage_booking.php. The manipulation of the argument id leads to sql injection.… | |||
| CVE-2023-2412 | 0.00 | — | 0.01 | Apr 28, 2023 | A vulnerability was found in SourceCodester AC Repair and Services System 1.0. It has been classified as critical. Affected is an unknown function of the file /admin/user/manage_user.php. The manipulation of the argument id leads to sql injection. It is possible to launch the… | |||
| CVE-2023-2411 | 0.00 | — | 0.01 | Apr 28, 2023 | A vulnerability was found in SourceCodester AC Repair and Services System 1.0 and classified as critical. This issue affects some unknown processing of the file /admin/inquiries/view_inquiry.php. The manipulation of the argument id leads to sql injection. The attack may be… | |||
| CVE-2023-2410 | 0.00 | — | 0.01 | Apr 28, 2023 | A vulnerability has been found in SourceCodester AC Repair and Services System 1.0 and classified as critical. This vulnerability affects unknown code of the file /admin/bookings/view_booking.php. The manipulation of the argument id leads to sql injection. The attack can be… | |||
| CVE-2023-2409 | 0.00 | — | 0.01 | Apr 28, 2023 | A vulnerability, which was classified as critical, was found in SourceCodester AC Repair and Services System 1.0. This affects an unknown part of the file /admin/services/view_service.php. The manipulation of the argument id leads to sql injection. It is possible to initiate the… | |||
| CVE-2023-2408 | 0.00 | — | 0.01 | Apr 28, 2023 | A vulnerability, which was classified as critical, has been found in SourceCodester AC Repair and Services System 1.0. Affected by this issue is some unknown functionality of the file services/view.php. The manipulation of the argument id leads to sql injection. The attack may… | |||
| CVE-2023-2364 | 0.00 | — | 0.01 | Apr 28, 2023 | A vulnerability, which was classified as problematic, was found in SourceCodester Resort Reservation System 1.0. Affected is an unknown function of the file registration.php. The manipulation of the argument fullname leads to cross site scripting. It is possible to launch the… | |||
| CVE-2023-2363 | 0.00 | — | 0.01 | Apr 28, 2023 | A vulnerability, which was classified as critical, has been found in SourceCodester Resort Reservation System 1.0. This issue affects some unknown processing of the file view_room.php. The manipulation of the argument id leads to sql injection. The attack may be initiated… | |||
| CVE-2023-2152 | 0.00 | — | 0.01 | Apr 18, 2023 | A vulnerability has been found in SourceCodester Student Study Center Desk Management System 1.0 and classified as critical. Affected by this vulnerability is an unknown functionality of the file index.php. The manipulation of the argument page leads to file inclusion. The… | |||
| CVE-2023-2151 | 0.00 | — | 0.01 | Apr 18, 2023 | A vulnerability, which was classified as critical, was found in SourceCodester Student Study Center Desk Management System 1.0. Affected is an unknown function of the file manage_student.php. The manipulation of the argument id leads to sql injection. It is possible to launch… | |||
| CVE-2023-29627 | 0.00 | — | 0.01 | Apr 14, 2023 | Online Pizza Ordering v1.0 was discovered to contain an arbitrary file upload vulnerability which allows attackers to execute arbitrary code via a crafted file uploaded to the server. | |||
| CVE-2023-29625 | 0.00 | — | 0.01 | Apr 14, 2023 | Employee Performance Evaluation System v1.0 was discovered to contain an arbitrary file upload vulnerability which allows attackers to execute arbitrary code via a crafted file uploaded to the server. | |||
| CVE-2023-1946 | 0.00 | — | 0.00 | Apr 7, 2023 | A vulnerability was found in SourceCodester Survey Application System 1.0 and classified as problematic. This issue affects some unknown processing of the component Add New Handler. The manipulation of the argument Title with the input … | |||
| CVE-2023-26856 | 0.00 | — | 0.01 | Apr 5, 2023 | Dynamic Transaction Queuing System v1.0 was discovered to contain a SQL injection vulnerability via the name parameter at /admin/ajax.php?action=login. | |||
| CVE-2023-26857 | 0.00 | — | 0.01 | Apr 5, 2023 | An arbitrary file upload vulnerability in /admin/ajax.php?action=save_uploads of Dynamic Transaction Queuing System v1.0 allows attackers to execute arbitrary code via a crafted PHP file. | |||
| CVE-2023-27242 | 0.00 | — | 0.00 | Mar 24, 2023 | SourceCodester Loan Management System v1.0 was discovered to contain a cross-site scripting (XSS) vulnerability via the Type parameter under the Edit Loan Types module. | |||
| CVE-2023-1568 | 0.00 | — | 0.01 | Mar 22, 2023 | A vulnerability classified as problematic has been found in SourceCodester Student Study Center Desk Management System 1.0. Affected is an unknown function of the file /admin/reports/index.php of the component GET Parameter Handler. The manipulation of the argument date_to leads… | |||
| CVE-2023-1567 | 0.00 | — | 0.01 | Mar 22, 2023 | A vulnerability was found in SourceCodester Student Study Center Desk Management System 1.0. It has been rated as problematic. This issue affects some unknown processing of the file /admin/assign/assign.php. The manipulation of the argument sid leads to cross site scripting. The… | |||
| CVE-2023-1566 | 0.00 | — | 0.00 | Mar 22, 2023 | A vulnerability was found in SourceCodester Medical Certificate Generator App 1.0. It has been declared as critical. This vulnerability affects unknown code of the file action.php. The manipulation of the argument id leads to sql injection. The attack can be initiated remotely.… | |||
| CVE-2023-1563 | 0.00 | — | 0.01 | Mar 22, 2023 | A vulnerability has been found in SourceCodester Student Study Center Desk Management System 1.0 and classified as critical. Affected by this vulnerability is an unknown functionality of the file /admin/assign/assign.php. The manipulation of the argument id leads to sql… | |||
| CVE-2023-1468 | 0.00 | — | 0.01 | Mar 17, 2023 | A vulnerability classified as critical was found in SourceCodester Student Study Center Desk Management System 1.0. Affected by this vulnerability is an unknown functionality of the file admin/?page=reports&date_from=2023-02-17&date_to=2023-03-17 of the component Report Handler.… | |||
| CVE-2023-1467 | 0.00 | — | 0.01 | Mar 17, 2023 | A vulnerability classified as critical has been found in SourceCodester Student Study Center Desk Management System 1.0. Affected is an unknown function of the file Master.php?f=delete_img of the component POST Parameter Handler. The manipulation of the argument path with the… | |||
| CVE-2023-1466 | 0.00 | — | 0.01 | Mar 17, 2023 | A vulnerability was found in SourceCodester Student Study Center Desk Management System 1.0. It has been rated as critical. This issue affects the function view_student of the file admin/?page=students/view_student. The manipulation of the argument id with the input 3' AND… | |||
| CVE-2023-1407 | 0.00 | — | 0.01 | Mar 15, 2023 | A vulnerability classified as critical was found in SourceCodester Student Study Center Desk Management System 1.0. Affected by this vulnerability is an unknown functionality of the file /admin/user/manage_user.php. The manipulation of the argument id leads to sql injection. The… | |||
| CVE-2023-1042 | 0.00 | — | 0.01 | Feb 26, 2023 | A vulnerability has been found in SourceCodester Online Pet Shop We App 1.0 and classified as problematic. This vulnerability affects unknown code of the file /pet_shop/admin/orders/update_status.php. The manipulation of the argument oid with the input… | |||
| CVE-2023-1041 | 0.00 | — | 0.01 | Feb 26, 2023 | A vulnerability, which was classified as problematic, was found in SourceCodester Simple Responsive Tourism Website 1.0. This affects an unknown part of the file /tourism/rate_review.php. The manipulation of the argument id with the input 1"> leads to… | |||
| CVE-2023-1006 | 0.00 | — | 0.00 | Feb 24, 2023 | A vulnerability was found in SourceCodester Medical Certificate Generator App 1.0. It has been classified as problematic. This affects an unknown part of the component New Record Handler. The manipulation of the argument Firstname/Middlename/Lastname/Suffix/Nationality/Doctor… | |||
| CVE-2023-0903 | 0.00 | — | 0.01 | Feb 18, 2023 | A vulnerability was found in SourceCodester Employee Task Management System 1.0. It has been declared as critical. This vulnerability affects unknown code of the file edit-task.php. The manipulation of the argument task_id leads to sql injection. The attack can be initiated… | |||
| CVE-2023-24647 | 0.00 | — | 0.01 | Feb 13, 2023 | Food Ordering System v2.0 was discovered to contain a SQL injection vulnerability via the email parameter. | |||
| CVE-2023-0774 | 0.00 | — | 0.01 | Feb 10, 2023 | A vulnerability has been found in SourceCodester Medical Certificate Generator App 1.0 and classified as critical. This vulnerability affects unknown code of the file action.php. The manipulation of the argument lastname leads to sql injection. The attack can be initiated… | |||
| CVE-2023-0707 | 0.00 | — | 0.00 | Feb 7, 2023 | A vulnerability was found in SourceCodester Medical Certificate Generator App 1.0. It has been rated as critical. Affected by this issue is the function delete_record of the file function.php. The manipulation of the argument id leads to sql injection. VDB-220346 is the… | |||
| CVE-2023-0706 | 0.00 | — | 0.00 | Feb 7, 2023 | A vulnerability, which was classified as critical, has been found in SourceCodester Medical Certificate Generator App 1.0. Affected by this issue is some unknown functionality of the file manage_record.php. The manipulation of the argument id leads to sql injection. The attack… | |||
| CVE-2022-46956 | 0.00 | — | 0.01 | Jan 13, 2023 | Dynamic Transaction Queuing System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /admin/manage_user.php. | |||
| CVE-2022-46951 | 0.00 | — | 0.01 | Jan 13, 2023 | Dynamic Transaction Queuing System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /admin/ajax.php?action=delete_uploads. | |||
| CVE-2022-46952 | 0.00 | — | 0.01 | Jan 13, 2023 | Dynamic Transaction Queuing System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /admin/ajax.php?action=delete_user. | |||
| CVE-2022-46954 | 0.00 | — | 0.01 | Jan 13, 2023 | Dynamic Transaction Queuing System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /admin/ajax.php?action=delete_transaction. | |||
| CVE-2023-0256 | 0.00 | — | 0.01 | Jan 12, 2023 | A vulnerability was found in SourceCodester Online Food Ordering System 2.0. It has been classified as critical. Affected is an unknown function of the file /fos/admin/ajax.php?action=login of the component Login Page. The manipulation of the argument Username leads to sql… | |||
| CVE-2022-47790 | 0.00 | — | 0.01 | Jan 9, 2023 | Sourcecodester Dynamic Transaction Queuing System v1.0 is vulnerable to SQL Injection via /queuing/index.php?page=display&id=. | |||
| CVE-2022-2666 | 0.00 | — | 0.01 | Jan 7, 2023 | A vulnerability has been found in SourceCodester Loan Management System and classified as critical. This vulnerability affects unknown code of the file login.php. The manipulation of the argument username leads to sql injection. The attack can be initiated remotely. The exploit… | |||
| CVE-2022-44137 | 0.00 | — | 0.01 | Dec 30, 2022 | SourceCodester Sanitization Management System 1.0 is vulnerable to SQL Injection. | |||
| CVE-2022-4726 | 0.00 | — | 0.00 | Dec 24, 2022 | A vulnerability classified as critical was found in SourceCodester Sanitization Management System 1.0. Affected by this vulnerability is an unknown functionality of the component Admin Login. The manipulation of the argument username/password leads to sql injection. The attack… | |||
| CVE-2022-46126 | 0.00 | — | 0.01 | Dec 14, 2022 | Helmet Store Showroom Site v1.0 is vulnerable to SQL Injection via /hss/admin/brands/manage_brand.php?id=. | |||
| CVE-2022-46127 | 0.00 | — | 0.01 | Dec 14, 2022 | Helmet Store Showroom Site v1.0 is vulnerable to SQL Injection via /hss/classes/Master.php?f=delete_product. | |||
| CVE-2022-46121 | 0.00 | — | 0.01 | Dec 14, 2022 | Helmet Store Showroom Site v1.0 is vulnerable to SQL Injection via /hss/admin/?page=products/manage_product&id=. | |||
| CVE-2022-46125 | 0.00 | — | 0.01 | Dec 14, 2022 | Helmet Store Showroom Site v1.0 is vulnerable to SQL Injection via /hss/admin/?page=client/manage_client&id=. | |||
| CVE-2022-46118 | 0.00 | — | 0.01 | Dec 14, 2022 | Helmet Store Showroom Site v1.0 is vulnerable to SQL Injection via /hss/?page=product_per_brand&bid=. | |||
| CVE-2022-45275 | 0.00 | — | 0.15 | Dec 12, 2022 | An arbitrary file upload vulnerability in /queuing/admin/ajax.php?action=save_settings of Dynamic Transaction Queuing System v1.0 allows attackers to execute arbitrary code via a crafted PHP file. |
- CVE-2023-2594May 9, 2023risk 0.00cvss —epss 0.01
A vulnerability, which was classified as critical, was found in SourceCodester Food Ordering Management System 1.0. Affected is an unknown function of the component Registration. The manipulation of the argument username leads to sql injection. It is possible to launch the…
- CVE-2023-30077May 4, 2023risk 0.00cvss —epss 0.01
Judging Management System v1.0 by oretnom23 was discovered to vulnerable to SQL injection via /php-jms/review_result.php?mainevent_id=, mainevent_id.
- CVE-2023-30204May 3, 2023risk 0.00cvss —epss 0.01
Judging Management System v1.0 was discovered to contain a SQL injection vulnerability via the judge_id parameter at /php-jms/edit_judge.php.
- CVE-2023-2413Apr 29, 2023risk 0.00cvss —epss 0.01
A vulnerability was found in SourceCodester AC Repair and Services System 1.0. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /admin/bookings/manage_booking.php. The manipulation of the argument id leads to sql injection.…
- CVE-2023-2412Apr 28, 2023risk 0.00cvss —epss 0.01
A vulnerability was found in SourceCodester AC Repair and Services System 1.0. It has been classified as critical. Affected is an unknown function of the file /admin/user/manage_user.php. The manipulation of the argument id leads to sql injection. It is possible to launch the…
- CVE-2023-2411Apr 28, 2023risk 0.00cvss —epss 0.01
A vulnerability was found in SourceCodester AC Repair and Services System 1.0 and classified as critical. This issue affects some unknown processing of the file /admin/inquiries/view_inquiry.php. The manipulation of the argument id leads to sql injection. The attack may be…
- CVE-2023-2410Apr 28, 2023risk 0.00cvss —epss 0.01
A vulnerability has been found in SourceCodester AC Repair and Services System 1.0 and classified as critical. This vulnerability affects unknown code of the file /admin/bookings/view_booking.php. The manipulation of the argument id leads to sql injection. The attack can be…
- CVE-2023-2409Apr 28, 2023risk 0.00cvss —epss 0.01
A vulnerability, which was classified as critical, was found in SourceCodester AC Repair and Services System 1.0. This affects an unknown part of the file /admin/services/view_service.php. The manipulation of the argument id leads to sql injection. It is possible to initiate the…
- CVE-2023-2408Apr 28, 2023risk 0.00cvss —epss 0.01
A vulnerability, which was classified as critical, has been found in SourceCodester AC Repair and Services System 1.0. Affected by this issue is some unknown functionality of the file services/view.php. The manipulation of the argument id leads to sql injection. The attack may…
- CVE-2023-2364Apr 28, 2023risk 0.00cvss —epss 0.01
A vulnerability, which was classified as problematic, was found in SourceCodester Resort Reservation System 1.0. Affected is an unknown function of the file registration.php. The manipulation of the argument fullname leads to cross site scripting. It is possible to launch the…
- CVE-2023-2363Apr 28, 2023risk 0.00cvss —epss 0.01
A vulnerability, which was classified as critical, has been found in SourceCodester Resort Reservation System 1.0. This issue affects some unknown processing of the file view_room.php. The manipulation of the argument id leads to sql injection. The attack may be initiated…
- CVE-2023-2152Apr 18, 2023risk 0.00cvss —epss 0.01
A vulnerability has been found in SourceCodester Student Study Center Desk Management System 1.0 and classified as critical. Affected by this vulnerability is an unknown functionality of the file index.php. The manipulation of the argument page leads to file inclusion. The…
- CVE-2023-2151Apr 18, 2023risk 0.00cvss —epss 0.01
A vulnerability, which was classified as critical, was found in SourceCodester Student Study Center Desk Management System 1.0. Affected is an unknown function of the file manage_student.php. The manipulation of the argument id leads to sql injection. It is possible to launch…
- CVE-2023-29627Apr 14, 2023risk 0.00cvss —epss 0.01
Online Pizza Ordering v1.0 was discovered to contain an arbitrary file upload vulnerability which allows attackers to execute arbitrary code via a crafted file uploaded to the server.
- CVE-2023-29625Apr 14, 2023risk 0.00cvss —epss 0.01
Employee Performance Evaluation System v1.0 was discovered to contain an arbitrary file upload vulnerability which allows attackers to execute arbitrary code via a crafted file uploaded to the server.
- CVE-2023-1946Apr 7, 2023risk 0.00cvss —epss 0.00
A vulnerability was found in SourceCodester Survey Application System 1.0 and classified as problematic. This issue affects some unknown processing of the component Add New Handler. The manipulation of the argument Title with the input …
- CVE-2023-26856Apr 5, 2023risk 0.00cvss —epss 0.01
Dynamic Transaction Queuing System v1.0 was discovered to contain a SQL injection vulnerability via the name parameter at /admin/ajax.php?action=login.
- CVE-2023-26857Apr 5, 2023risk 0.00cvss —epss 0.01
An arbitrary file upload vulnerability in /admin/ajax.php?action=save_uploads of Dynamic Transaction Queuing System v1.0 allows attackers to execute arbitrary code via a crafted PHP file.
- CVE-2023-27242Mar 24, 2023risk 0.00cvss —epss 0.00
SourceCodester Loan Management System v1.0 was discovered to contain a cross-site scripting (XSS) vulnerability via the Type parameter under the Edit Loan Types module.
- CVE-2023-1568Mar 22, 2023risk 0.00cvss —epss 0.01
A vulnerability classified as problematic has been found in SourceCodester Student Study Center Desk Management System 1.0. Affected is an unknown function of the file /admin/reports/index.php of the component GET Parameter Handler. The manipulation of the argument date_to leads…
- CVE-2023-1567Mar 22, 2023risk 0.00cvss —epss 0.01
A vulnerability was found in SourceCodester Student Study Center Desk Management System 1.0. It has been rated as problematic. This issue affects some unknown processing of the file /admin/assign/assign.php. The manipulation of the argument sid leads to cross site scripting. The…
- CVE-2023-1566Mar 22, 2023risk 0.00cvss —epss 0.00
A vulnerability was found in SourceCodester Medical Certificate Generator App 1.0. It has been declared as critical. This vulnerability affects unknown code of the file action.php. The manipulation of the argument id leads to sql injection. The attack can be initiated remotely.…
- CVE-2023-1563Mar 22, 2023risk 0.00cvss —epss 0.01
A vulnerability has been found in SourceCodester Student Study Center Desk Management System 1.0 and classified as critical. Affected by this vulnerability is an unknown functionality of the file /admin/assign/assign.php. The manipulation of the argument id leads to sql…
- CVE-2023-1468Mar 17, 2023risk 0.00cvss —epss 0.01
A vulnerability classified as critical was found in SourceCodester Student Study Center Desk Management System 1.0. Affected by this vulnerability is an unknown functionality of the file admin/?page=reports&date_from=2023-02-17&date_to=2023-03-17 of the component Report Handler.…
- CVE-2023-1467Mar 17, 2023risk 0.00cvss —epss 0.01
A vulnerability classified as critical has been found in SourceCodester Student Study Center Desk Management System 1.0. Affected is an unknown function of the file Master.php?f=delete_img of the component POST Parameter Handler. The manipulation of the argument path with the…
- CVE-2023-1466Mar 17, 2023risk 0.00cvss —epss 0.01
A vulnerability was found in SourceCodester Student Study Center Desk Management System 1.0. It has been rated as critical. This issue affects the function view_student of the file admin/?page=students/view_student. The manipulation of the argument id with the input 3' AND…
- CVE-2023-1407Mar 15, 2023risk 0.00cvss —epss 0.01
A vulnerability classified as critical was found in SourceCodester Student Study Center Desk Management System 1.0. Affected by this vulnerability is an unknown functionality of the file /admin/user/manage_user.php. The manipulation of the argument id leads to sql injection. The…
- CVE-2023-1042Feb 26, 2023risk 0.00cvss —epss 0.01
A vulnerability has been found in SourceCodester Online Pet Shop We App 1.0 and classified as problematic. This vulnerability affects unknown code of the file /pet_shop/admin/orders/update_status.php. The manipulation of the argument oid with the input…
- CVE-2023-1041Feb 26, 2023risk 0.00cvss —epss 0.01
A vulnerability, which was classified as problematic, was found in SourceCodester Simple Responsive Tourism Website 1.0. This affects an unknown part of the file /tourism/rate_review.php. The manipulation of the argument id with the input 1"> leads to…
- CVE-2023-1006Feb 24, 2023risk 0.00cvss —epss 0.00
A vulnerability was found in SourceCodester Medical Certificate Generator App 1.0. It has been classified as problematic. This affects an unknown part of the component New Record Handler. The manipulation of the argument Firstname/Middlename/Lastname/Suffix/Nationality/Doctor…
- CVE-2023-0903Feb 18, 2023risk 0.00cvss —epss 0.01
A vulnerability was found in SourceCodester Employee Task Management System 1.0. It has been declared as critical. This vulnerability affects unknown code of the file edit-task.php. The manipulation of the argument task_id leads to sql injection. The attack can be initiated…
- CVE-2023-24647Feb 13, 2023risk 0.00cvss —epss 0.01
Food Ordering System v2.0 was discovered to contain a SQL injection vulnerability via the email parameter.
- CVE-2023-0774Feb 10, 2023risk 0.00cvss —epss 0.01
A vulnerability has been found in SourceCodester Medical Certificate Generator App 1.0 and classified as critical. This vulnerability affects unknown code of the file action.php. The manipulation of the argument lastname leads to sql injection. The attack can be initiated…
- CVE-2023-0707Feb 7, 2023risk 0.00cvss —epss 0.00
A vulnerability was found in SourceCodester Medical Certificate Generator App 1.0. It has been rated as critical. Affected by this issue is the function delete_record of the file function.php. The manipulation of the argument id leads to sql injection. VDB-220346 is the…
- CVE-2023-0706Feb 7, 2023risk 0.00cvss —epss 0.00
A vulnerability, which was classified as critical, has been found in SourceCodester Medical Certificate Generator App 1.0. Affected by this issue is some unknown functionality of the file manage_record.php. The manipulation of the argument id leads to sql injection. The attack…
- CVE-2022-46956Jan 13, 2023risk 0.00cvss —epss 0.01
Dynamic Transaction Queuing System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /admin/manage_user.php.
- CVE-2022-46951Jan 13, 2023risk 0.00cvss —epss 0.01
Dynamic Transaction Queuing System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /admin/ajax.php?action=delete_uploads.
- CVE-2022-46952Jan 13, 2023risk 0.00cvss —epss 0.01
Dynamic Transaction Queuing System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /admin/ajax.php?action=delete_user.
- CVE-2022-46954Jan 13, 2023risk 0.00cvss —epss 0.01
Dynamic Transaction Queuing System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /admin/ajax.php?action=delete_transaction.
- CVE-2023-0256Jan 12, 2023risk 0.00cvss —epss 0.01
A vulnerability was found in SourceCodester Online Food Ordering System 2.0. It has been classified as critical. Affected is an unknown function of the file /fos/admin/ajax.php?action=login of the component Login Page. The manipulation of the argument Username leads to sql…
- CVE-2022-47790Jan 9, 2023risk 0.00cvss —epss 0.01
Sourcecodester Dynamic Transaction Queuing System v1.0 is vulnerable to SQL Injection via /queuing/index.php?page=display&id=.
- CVE-2022-2666Jan 7, 2023risk 0.00cvss —epss 0.01
A vulnerability has been found in SourceCodester Loan Management System and classified as critical. This vulnerability affects unknown code of the file login.php. The manipulation of the argument username leads to sql injection. The attack can be initiated remotely. The exploit…
- CVE-2022-44137Dec 30, 2022risk 0.00cvss —epss 0.01
SourceCodester Sanitization Management System 1.0 is vulnerable to SQL Injection.
- CVE-2022-4726Dec 24, 2022risk 0.00cvss —epss 0.00
A vulnerability classified as critical was found in SourceCodester Sanitization Management System 1.0. Affected by this vulnerability is an unknown functionality of the component Admin Login. The manipulation of the argument username/password leads to sql injection. The attack…
- CVE-2022-46126Dec 14, 2022risk 0.00cvss —epss 0.01
Helmet Store Showroom Site v1.0 is vulnerable to SQL Injection via /hss/admin/brands/manage_brand.php?id=.
- CVE-2022-46127Dec 14, 2022risk 0.00cvss —epss 0.01
Helmet Store Showroom Site v1.0 is vulnerable to SQL Injection via /hss/classes/Master.php?f=delete_product.
- CVE-2022-46121Dec 14, 2022risk 0.00cvss —epss 0.01
Helmet Store Showroom Site v1.0 is vulnerable to SQL Injection via /hss/admin/?page=products/manage_product&id=.
- CVE-2022-46125Dec 14, 2022risk 0.00cvss —epss 0.01
Helmet Store Showroom Site v1.0 is vulnerable to SQL Injection via /hss/admin/?page=client/manage_client&id=.
- CVE-2022-46118Dec 14, 2022risk 0.00cvss —epss 0.01
Helmet Store Showroom Site v1.0 is vulnerable to SQL Injection via /hss/?page=product_per_brand&bid=.
- CVE-2022-45275Dec 12, 2022risk 0.00cvss —epss 0.15
An arbitrary file upload vulnerability in /queuing/admin/ajax.php?action=save_settings of Dynamic Transaction Queuing System v1.0 allows attackers to execute arbitrary code via a crafted PHP file.
Page 5 of 9