CVSS: 9.8EPSS: 0%CPEs: 1EXPL: 1CVE-2024-8169 – code-projects Online Quiz Site signupuser.php sql injection
https://notcve.org/view.php?id=CVE-2024-8169
A vulnerability was found in code-projects Online Quiz Site 1.0. It has been rated as critical. Affected by this issue is some unknown functionality of the file signupuser.php. The manipulation of the argument lid leads to sql injection. The attack may be launched remotely. • https://code-projects.org https://github.com/t4rrega/cve/issues/5 https://vuldb.com/?ctiid.275768 https://vuldb.com/?id.275768 https://vuldb.com/?submit.397718 • CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') •
CVSS: 9.8EPSS: 0%CPEs: 1EXPL: 1CVE-2024-8168 – code-projects Online Bus Reservation Site login.php sql injection
https://notcve.org/view.php?id=CVE-2024-8168
A vulnerability was found in code-projects Online Bus Reservation Site 1.0. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file login.php. The manipulation of the argument Username leads to sql injection. The attack can be launched remotely. • https://code-projects.org https://github.com/t4rrega/cve/issues/2 https://vuldb.com/?ctiid.275767 https://vuldb.com/?id.275767 https://vuldb.com/?submit.397715 • CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') •
CVSS: 9.8EPSS: 0%CPEs: 1EXPL: 1CVE-2024-8167 – code-projects Job Portal forget.php sql injection
https://notcve.org/view.php?id=CVE-2024-8167
A vulnerability was found in code-projects Job Portal 1.0. It has been classified as critical. Affected is an unknown function of the file /forget.php. The manipulation of the argument email/mobile leads to sql injection. It is possible to launch the attack remotely. • https://code-projects.org https://github.com/t4rrega/cve/issues/1 https://vuldb.com/?ctiid.275766 https://vuldb.com/?id.275766 https://vuldb.com/?submit.397714 • CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') •
CVSS: 6.1EPSS: 0%CPEs: 1EXPL: 1CVE-2024-0504 – code-projects Simple Online Hotel Reservation System Make a Reservation Page add_reserve.php cross site scripting
https://notcve.org/view.php?id=CVE-2024-0504
A vulnerability has been found in code-projects Simple Online Hotel Reservation System 1.0 and classified as problematic. This vulnerability affects unknown code of the file add_reserve.php of the component Make a Reservation Page. The manipulation of the argument Firstname/Lastname with the input <script>alert(1)</script> leads to cross site scripting. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used. • https://drive.google.com/file/d/1BIa4jfZ9FbW9d7O3tRdAKF3tb6b5NUB6/view?usp=sharing https://vuldb.com/?ctiid.250618 https://vuldb.com/?id.250618 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVSS: 9.8EPSS: 0%CPEs: 1EXPL: 1CVE-2024-0463 – code-projects Online Faculty Clearance HTTP POST Request admin_view_info.php sql injection
https://notcve.org/view.php?id=CVE-2024-0463
A vulnerability was found in code-projects Online Faculty Clearance 1.0. It has been rated as critical. Affected by this issue is some unknown functionality of the file /production/admin_view_info.php of the component HTTP POST Request Handler. The manipulation of the argument haydi leads to sql injection. The attack may be launched remotely. • https://github.com/BxYQ/vul/blob/main/3ONLINE_FACULTY_CLEARANCE_SYSTEM%20has%20SQL3.pdf https://vuldb.com/?ctiid.250568 https://vuldb.com/?id.250568 • CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') •