VYPR

Vendor CVEs

Sourcecodester

All CVEs

1,696 total · sorted by risk
  • CVE-2024-28277May 13, 2024
    risk 0.00cvss epss 0.00

    In Sourcecodester School Task Manager v1.0, a vulnerability was identified within the subject_name= parameter, enabling Stored Cross-Site Scripting (XSS) attacks. This vulnerability allows attackers to manipulate the subject's name, potentially leading to the execution of…

  • CVE-2024-34226May 13, 2024
    risk 0.00cvss epss 0.01

    SQL injection vulnerability in /php-sqlite-vms/?page=manage_visitor&id=1 in SourceCodester Visitor Management System 1.0 allow attackers to execute arbitrary SQL commands via the id parameters.

  • CVE-2024-4820May 13, 2024
    risk 0.00cvss epss 0.01

    A vulnerability was found in SourceCodester Online Computer and Laptop Store 1.0. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /classes/SystemSettings.php?f=update_settings. The manipulation leads to unrestricted…

  • CVE-2024-4798May 12, 2024
    risk 0.00cvss epss 0.01

    A vulnerability, which was classified as critical, has been found in SourceCodester Online Computer and Laptop Store 1.0. Affected by this issue is some unknown functionality of the file /admin/maintenance/manage_brand.php. The manipulation of the argument id leads to sql…

  • CVE-2024-26517May 8, 2024
    risk 0.00cvss epss 0.01

    SQL Injection vulnerability in School Task Manager v.1.0 allows a remote attacker to obtain sensitive information via a crafted payload to the delete-task.php component.

  • CVE-2024-4645May 8, 2024
    risk 0.00cvss epss 0.00

    A vulnerability was found in SourceCodester Prison Management System 1.0 and classified as problematic. This issue affects some unknown processing of the file /Admin/changepassword.php. The manipulation of the argument txtold_password/txtnew_password/txtconfirm_password leads to…

  • CVE-2024-4644May 8, 2024
    risk 0.00cvss epss 0.01

    A vulnerability has been found in SourceCodester Prison Management System 1.0 and classified as problematic. This vulnerability affects unknown code of the file /Employee/changepassword.php. The manipulation of the argument txtold_password/txtnew_password/txtconfirm_password…

  • CVE-2024-4528May 6, 2024
    risk 0.00cvss epss 0.01

    A vulnerability was found in SourceCodester Prison Management System 1.0. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the file /Admin/user-record.php. The manipulation of the argument txtfullname leads to cross site…

  • CVE-2024-4512May 6, 2024
    risk 0.00cvss epss 0.01

    A vulnerability classified as problematic was found in SourceCodester Prison Management System 1.0. This vulnerability affects unknown code of the file /Employee/edit-profile.php. The manipulation of the argument txtfullname/txtdob/txtaddress/txtqualification/cmddept/cmdemployeet…

  • CVE-2024-4500May 5, 2024
    risk 0.00cvss epss 0.01

    A vulnerability was found in SourceCodester Prison Management System 1.0. It has been declared as critical. This vulnerability affects unknown code of the file /Employee/edit-photo.php. The manipulation of the argument userImage leads to unrestricted upload. The attack can be…

  • CVE-2024-33303May 2, 2024
    risk 0.00cvss epss 0.01

    SourceCodester Product Show Room 1.0 is vulnerable to Cross Site Scripting (XSS) via "First Name" under Add Users.

  • CVE-2024-33302May 2, 2024
    risk 0.00cvss epss 0.00

    SourceCodester Product Show Room 1.0 and before is vulnerable to Cross Site Scripting (XSS) via "Middle Name" under Add Users.

  • CVE-2024-33304May 1, 2024
    risk 0.00cvss epss 0.00

    SourceCodester Product Show Room 1.0 is vulnerable to Cross Site Scripting (XSS) via "Last Name" under Add Users.

  • CVE-2023-23019May 1, 2024
    risk 0.00cvss epss 0.00

    Cross site scripting (XSS) vulnerability in file main.php in sourcecodester oretnom23 Blog Site 1.0 via the name and email parameters to function user_add.\

  • CVE-2024-4349Apr 30, 2024
    risk 0.00cvss epss 0.01

    A vulnerability has been found in SourceCodester Pisay Online E-Learning System 1.0 and classified as critical. Affected by this vulnerability is an unknown functionality of the file /lesson/controller.php. The manipulation of the argument file leads to unrestricted upload. The…

  • CVE-2024-4093Apr 24, 2024
    risk 0.00cvss epss 0.01

    A vulnerability, which was classified as critical, was found in SourceCodester Simple Subscription Website 1.0. Affected is an unknown function of the file view_application.php. The manipulation of the argument id leads to sql injection. It is possible to launch the attack…

  • CVE-2024-3948Apr 18, 2024
    risk 0.00cvss epss 0.01

    A vulnerability was found in SourceCodester Home Clean Service System 1.0. It has been rated as critical. Affected by this issue is some unknown functionality of the file \admin\student.add.php of the component Photo Handler. The manipulation leads to unrestricted upload. The…

  • CVE-2024-3797Apr 15, 2024
    risk 0.00cvss epss 0.01

    A vulnerability was found in SourceCodester QR Code Bookmark System 1.0. It has been declared as critical. This vulnerability affects unknown code of the file /endpoint/delete-bookmark.php?bookmark=1. The manipulation of the argument bookmark leads to sql injection. The attack…

  • CVE-2024-28558Apr 15, 2024
    risk 0.00cvss epss 0.01

    SQL Injection vulnerability in sourcecodester Petrol pump management software v1.0, allows remote attackers to execute arbitrary code, escalate privileges, and obtain sensitive information via crafted payload to admin/app/web_crud.php.

  • CVE-2024-28556Apr 15, 2024
    risk 0.00cvss epss 0.01

    SQL Injection vulnerability in Sourcecodester php task management system v1.0, allows remote attackers to execute arbitrary code, escalate privileges, and obtain sensitive information via crafted payload to admin-manage-user.php.

  • CVE-2024-28557Apr 15, 2024
    risk 0.00cvss epss 0.01

    SQL Injection vulnerability in Sourcecodester php task management system v1.0, allows remote attackers to execute arbitrary code, escalate privileges, and obtain sensitive information via crafted payload to update-admin.php.

  • CVE-2024-3621Apr 11, 2024
    risk 0.00cvss epss 0.01

    A vulnerability was found in SourceCodester Kortex Lite Advocate Office Management System 1.0. It has been classified as critical. This affects an unknown part of the file /control/register_case.php. The manipulation of the argument title/case_no/client_name/court/case_type/case_…

  • CVE-2024-3620Apr 11, 2024
    risk 0.00cvss epss 0.01

    A vulnerability was found in SourceCodester Kortex Lite Advocate Office Management System 1.0 and classified as critical. Affected by this issue is some unknown functionality of the file /control/adds.php. The manipulation of the argument name/gender/dob/email/mobile/address…

  • CVE-2024-3619Apr 11, 2024
    risk 0.00cvss epss 0.01

    A vulnerability has been found in SourceCodester Kortex Lite Advocate Office Management System 1.0 and classified as critical. Affected by this vulnerability is an unknown functionality of the file /control/addcase_stage.php. The manipulation of the argument cname leads to sql…

  • CVE-2024-3618Apr 11, 2024
    risk 0.00cvss epss 0.01

    A vulnerability, which was classified as critical, was found in SourceCodester Kortex Lite Advocate Office Management System 1.0. Affected is an unknown function of the file /control/activate_case.php. The manipulation of the argument id leads to sql injection. It is possible to…

  • CVE-2024-3617Apr 11, 2024
    risk 0.00cvss epss 0.01

    A vulnerability, which was classified as critical, has been found in SourceCodester Kortex Lite Advocate Office Management System 1.0. This issue affects some unknown processing of the file /control/deactivate_case.php. The manipulation of the argument id leads to sql injection.…

  • CVE-2024-3616Apr 11, 2024
    risk 0.00cvss epss 0.01

    A vulnerability classified as problematic was found in SourceCodester Warehouse Management System 1.0. This vulnerability affects unknown code of the file pengguna.php. The manipulation of the argument admin_user/admin_nama/admin_alamat/admin_telepon leads to cross site…

  • CVE-2024-3614Apr 11, 2024
    risk 0.00cvss epss 0.01

    A vulnerability classified as problematic has been found in SourceCodester Warehouse Management System 1.0. This affects an unknown part of the file customer.php. The manipulation of the argument nama_customer/alamat_customer/notelp_customer leads to cross site scripting. It is…

  • CVE-2024-3613Apr 11, 2024
    risk 0.00cvss epss 0.01

    A vulnerability was found in SourceCodester Warehouse Management System 1.0. It has been rated as problematic. Affected by this issue is some unknown functionality of the file supplier.php. The manipulation of the argument nama_supplier/alamat_supplier/notelp_supplier leads to…

  • CVE-2024-31678Apr 11, 2024
    risk 0.00cvss epss 0.01

    Sourcecodester Loan Management System v1.0 is vulnerable to SQL Injection via the "password" parameter in the "login.php" file.

  • CVE-2024-3612Apr 10, 2024
    risk 0.00cvss epss 0.01

    A vulnerability was found in SourceCodester Warehouse Management System 1.0. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the file barang.php. The manipulation of the argument nama_barang/merek leads to cross site scripting.…

  • CVE-2024-31507Apr 9, 2024
    risk 0.00cvss epss 0.00

    Sourcecodester Online Graduate Tracer System v1.0 is vulnerable to SQL Injection via the "request" parameter in admin/fetch_gendercs.php.

  • CVE-2024-31506Apr 9, 2024
    risk 0.00cvss epss 0.01

    Sourcecodester Online Graduate Tracer System v1.0 is vulnerable to SQL Injection via the "id" parameter in admin/admin_cs.php.

  • CVE-2024-3466Apr 8, 2024
    risk 0.00cvss epss 0.01

    A vulnerability was found in SourceCodester Laundry Management System 1.0. It has been declared as critical. Affected by this vulnerability is the function laporan_filter of the file /application/controller/Pengeluaran.php. The manipulation of the argument dari/sampai leads to…

  • CVE-2024-3465Apr 8, 2024
    risk 0.00cvss epss 0.01

    A vulnerability was found in SourceCodester Laundry Management System 1.0. It has been classified as critical. Affected is the function laporan_filter of the file /application/controller/Transaki.php. The manipulation of the argument dari/sampai leads to sql injection. It is…

  • CVE-2024-3464Apr 8, 2024
    risk 0.00cvss epss 0.01

    A vulnerability was found in SourceCodester Laundry Management System 1.0 and classified as critical. This issue affects the function laporan_filter of the file /application/controller/Pelanggan.php. The manipulation of the argument jeniskelamin leads to sql injection. The…

  • CVE-2024-3463Apr 8, 2024
    risk 0.00cvss epss 0.01

    A vulnerability has been found in SourceCodester Laundry Management System 1.0 and classified as problematic. This vulnerability affects unknown code of the file /karyawan/edit. The manipulation of the argument karyawan leads to cross site scripting. The attack can be initiated…

  • CVE-2024-3445Apr 8, 2024
    risk 0.00cvss epss 0.01

    A vulnerability was found in SourceCodester Laundry Management System 1.0. It has been declared as critical. This vulnerability affects unknown code of the file /karyawan/laporan_filter. The manipulation of the argument data_karyawan leads to sql injection. The attack can be…

  • CVE-2024-3443Apr 8, 2024
    risk 0.00cvss epss 0.01

    A vulnerability classified as problematic was found in SourceCodester Prison Management System 1.0. This vulnerability affects unknown code of the file /Employee/apply_leave.php. The manipulation of the argument txtstart_date/txtend_date leads to cross site scripting. The attack…

  • CVE-2024-3442Apr 8, 2024
    risk 0.00cvss epss 0.01

    A vulnerability classified as critical has been found in SourceCodester Prison Management System 1.0. This affects an unknown part of the file /Employee/delete_leave.php. The manipulation leads to sql injection. It is possible to initiate the attack remotely. The exploit has…

  • CVE-2024-3441Apr 8, 2024
    risk 0.00cvss epss 0.01

    A vulnerability was found in SourceCodester Prison Management System 1.0. It has been rated as critical. Affected by this issue is some unknown functionality of the file /Employee/edit-profile.php. The manipulation leads to sql injection. The attack may be launched remotely. The…

  • CVE-2024-3440Apr 8, 2024
    risk 0.00cvss epss 0.01

    A vulnerability was found in SourceCodester Prison Management System 1.0. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /Admin/edit_profile.php. The manipulation leads to sql injection. The attack can be launched…

  • CVE-2024-3439Apr 8, 2024
    risk 0.00cvss epss 0.01

    A vulnerability was found in SourceCodester Prison Management System 1.0. It has been classified as critical. Affected is an unknown function of the file /Account/login.php. The manipulation leads to sql injection. It is possible to launch the attack remotely. The exploit has…

  • CVE-2024-3438Apr 8, 2024
    risk 0.00cvss epss 0.01

    A vulnerability was found in SourceCodester Prison Management System 1.0 and classified as critical. This issue affects some unknown processing of the file /Admin/login.php. The manipulation leads to sql injection. The attack may be initiated remotely. The exploit has been…

  • CVE-2024-3437Apr 8, 2024
    risk 0.00cvss epss 0.01

    A vulnerability was found in SourceCodester Prison Management System 1.0. It has been rated as critical. This issue affects some unknown processing of the file /Admin/add-admin.php of the component Avatar Handler. The manipulation of the argument avatar leads to unrestricted…

  • CVE-2024-3436Apr 7, 2024
    risk 0.00cvss epss 0.01

    A vulnerability was found in SourceCodester Prison Management System 1.0. It has been declared as critical. This vulnerability affects unknown code of the file /Admin/edit-photo.php of the component Avatar Handler. The manipulation of the argument avatar leads to unrestricted…

  • CVE-2024-3428Apr 7, 2024
    risk 0.00cvss epss 0.01

    A vulnerability has been found in SourceCodester Online Courseware 1.0 and classified as problematic. This vulnerability affects unknown code of the file edit.php. The manipulation of the argument id leads to cross site scripting. The attack can be initiated remotely. The…

  • CVE-2024-3427Apr 7, 2024
    risk 0.00cvss epss 0.01

    A vulnerability, which was classified as problematic, was found in SourceCodester Online Courseware 1.0. This affects an unknown part of the file addq.php. The manipulation of the argument id leads to cross site scripting. It is possible to initiate the attack remotely. The…

  • CVE-2024-3426Apr 7, 2024
    risk 0.00cvss epss 0.01

    A vulnerability, which was classified as problematic, has been found in SourceCodester Online Courseware 1.0. Affected by this issue is some unknown functionality of the file editt.php. The manipulation of the argument id leads to cross site scripting. The attack may be launched…

  • CVE-2024-3425Apr 7, 2024
    risk 0.00cvss epss 0.01

    A vulnerability classified as critical was found in SourceCodester Online Courseware 1.0. Affected by this vulnerability is an unknown functionality of the file admin/activateall.php. The manipulation of the argument selector leads to sql injection. The attack can be launched…

Page 17 of 34