|
314551
|
9.8 |
CRITICAL
Network
|
nelzkie15
|
pet_shop_management_system
|
A vulnerability classified as critical was found in SourceCodester Petshop Management System 1.0. This vulnerability affects unknown code of the file /controllers/add_user.php. The manipulation of th…
|
CWE-434
Unrestricted Upload of File with Dangerous Type
|
CVE-2024-8341
|
2024-09-5 01:16 |
2024-08-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
314552
|
9.8 |
CRITICAL
Network
|
oretnom23
|
electric_billing_management_system
|
A vulnerability classified as critical has been found in SourceCodester Electric Billing Management System 1.0. This affects an unknown part of the file /Actions.php?a=login. The manipulation of the …
|
CWE-89
SQL Injection
|
CVE-2024-8340
|
2024-09-5 01:14 |
2024-08-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
314553
|
9.8 |
CRITICAL
Network
|
oretnom23
|
electric_billing_management_system
|
A vulnerability was found in SourceCodester Electric Billing Management System 1.0. It has been rated as critical. Affected by this issue is some unknown functionality of the file /?page=tracks of th…
|
CWE-89
SQL Injection
|
CVE-2024-8339
|
2024-09-5 01:14 |
2024-08-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
314554
|
9.8 |
CRITICAL
Network
|
oretnom23
|
music_gallery_site
|
A vulnerability classified as critical was found in SourceCodester Music Gallery Site 1.0. Affected by this vulnerability is an unknown functionality of the file /php-music/classes/Master.php?f=delet…
|
CWE-89
SQL Injection
|
CVE-2024-8336
|
2024-09-5 01:11 |
2024-08-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
314555
|
- |
|
-
|
-
|
A sensitive information disclosure vulnerability exists in ZZCMS v.2023 and before within the eginfo.php file located at /3/E_bak5.1/upload/. When accessed with the query parameter phome=ShowPHPInfo,…
|
-
|
CVE-2024-44820
|
2024-09-5 01:09 |
2024-09-5 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
314556
|
6.1 |
MEDIUM
Network
|
cdevroe
|
unmark
|
unmark 1.9.2 is vulnerable to Cross Site Scripting (XSS) via application/views/marks/add_by_url.php.
|
CWE-79
Cross-site Scripting
|
CVE-2024-41349
|
2024-09-5 01:08 |
2024-08-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
314557
|
9.8 |
CRITICAL
Network
|
organizr
|
organizr
|
Organizr v1.90 was discovered to contain a SQL injection vulnerability via chat/settyping.php.
|
CWE-89
SQL Injection
|
CVE-2024-41372
|
2024-09-5 01:08 |
2024-08-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
314558
|
6.1 |
MEDIUM
Network
|
organizr
|
organizr
|
Organizr v1.90 is vulnerable to Cross Site Scripting (XSS) via api.php.
|
CWE-79
Cross-site Scripting
|
CVE-2024-41371
|
2024-09-5 01:08 |
2024-08-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
314559
|
9.8 |
CRITICAL
Network
|
organizr
|
organizr
|
Organizr v1.90 was discovered to contain a SQL injection vulnerability via chat/setlike.php.
|
CWE-89
SQL Injection
|
CVE-2024-41370
|
2024-09-5 01:08 |
2024-08-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
314560
|
6.1 |
MEDIUM
Network
|
phpipam
|
phpipam
|
phpipam 1.6 is vulnerable to Cross Site Scripting (XSS) via app\admin\import-export\import-load-data.php.
|
CWE-79
Cross-site Scripting
|
CVE-2024-41358
|
2024-09-5 01:07 |
2024-08-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
