CVSS: 6.5EPSS: 0%CPEs: 1EXPL: 1CVE-2024-11631 – itsourcecode Tailoring Management System expedit.php sql injection
https://notcve.org/view.php?id=CVE-2024-11631
A vulnerability was found in itsourcecode Tailoring Management System 1.0 and classified as critical. This issue affects some unknown processing of the file /expedit.php. The manipulation of the argument expcat leads to sql injection. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used. • https://github.com/sil3n/cve/issues/1 https://itsourcecode.com https://vuldb.com/?ctiid.285917 https://vuldb.com/?id.285917 https://vuldb.com/?submit.446290 • CWE-74: Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection') CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') •
CVSS: 6.5EPSS: 0%CPEs: 1EXPL: 1CVE-2024-11589 – itsourcecode Tailoring Management System expcatedit.php sql injection
https://notcve.org/view.php?id=CVE-2024-11589
A vulnerability classified as critical was found in itsourcecode Tailoring Management System 1.0. Affected by this vulnerability is an unknown functionality of the file /expcatedit.php. The manipulation of the argument id leads to sql injection. The attack can be launched remotely. The exploit has been disclosed to the public and may be used. • https://vuldb.com/?id.285661 https://vuldb.com/?ctiid.285661 https://vuldb.com/?submit.445506 https://github.com/kevin27392/cve/issues/1 https://itsourcecode.com • CWE-74: Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection') CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') •
CVSS: 6.5EPSS: 0%CPEs: 1EXPL: 1CVE-2024-11074 – itsourcecode Tailoring Management System incadd.php sql injection
https://notcve.org/view.php?id=CVE-2024-11074
A vulnerability classified as critical was found in itsourcecode Tailoring Management System 1.0. This vulnerability affects unknown code of the file /incadd.php. The manipulation of the argument inccat/desc/date/amount leads to sql injection. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used. • https://github.com/dimongshi/cve/issues/1 https://itsourcecode.com https://vuldb.com/?ctiid.283870 https://vuldb.com/?id.283870 https://vuldb.com/?submit.441174 • CWE-74: Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection') CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') •
CVSS: 6.5EPSS: 0%CPEs: 1EXPL: 1CVE-2024-10759 – itsourcecode Farm Management System edit-pig.php sql injection
https://notcve.org/view.php?id=CVE-2024-10759
A vulnerability has been found in itsourcecode Farm Management System 1.0 and classified as critical. This vulnerability affects unknown code of the file /edit-pig.php. The manipulation of the argument pigno/weight/arrived/breed/remark/status leads to sql injection. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used. • https://github.com/liujiaquan1122/cve/issues/2 https://itsourcecode.com https://vuldb.com/?ctiid.282928 https://vuldb.com/?id.282928 https://vuldb.com/?submit.436418 • CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') •
CVSS: 6.5EPSS: 0%CPEs: 1EXPL: 1CVE-2024-10738 – itsourcecode Farm Management System manage-breed.php sql injection
https://notcve.org/view.php?id=CVE-2024-10738
A vulnerability classified as critical was found in itsourcecode Farm Management System 1.0. Affected by this vulnerability is an unknown functionality of the file manage-breed.php. The manipulation of the argument breed leads to sql injection. The attack can be launched remotely. The exploit has been disclosed to the public and may be used. • https://github.com/Nightmaremassacre/cve/issues/3 https://itsourcecode.com https://vuldb.com/?ctiid.282907 https://vuldb.com/?id.282907 https://vuldb.com/?submit.435539 • CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') •