CVSS: 9.8EPSS: 0%CPEs: 1EXPL: 1CVE-2023-24198
https://notcve.org/view.php?id=CVE-2023-24198
Raffle Draw System v1.0 was discovered to contain multiple SQL injection vulnerabilities at save_winner.php via the ticket_id and draw parameters. • https://github.com/xiumulty/CVE/blob/main/Raffle%20draw%20system%20v1.0/sql%20in%20save_winner.md https://www.sourcecodester.com/php/15951/raffle-draw-system-using-php-and-javascript-free-source-code.html • CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') •
CVSS: 9.8EPSS: 0%CPEs: 1EXPL: 1CVE-2023-24199
https://notcve.org/view.php?id=CVE-2023-24199
Raffle Draw System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at delete_ticket.php. • https://github.com/xiumulty/CVE/blob/main/Raffle%20draw%20system%20v1.0/sql%20in%20delete_ticket.php.md https://www.sourcecodester.com/php/15951/raffle-draw-system-using-php-and-javascript-free-source-code.html • CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') •
CVSS: 9.8EPSS: 0%CPEs: 1EXPL: 1CVE-2023-24201
https://notcve.org/view.php?id=CVE-2023-24201
Raffle Draw System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at get_ticket.php. • https://github.com/xiumulty/CVE/blob/main/Raffle%20draw%20system%20v1.0/sql%20in%20get_ticket.php.md https://www.sourcecodester.com/php/15951/raffle-draw-system-using-php-and-javascript-free-source-code.html • CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') •
CVSS: 9.8EPSS: 0%CPEs: 1EXPL: 1CVE-2023-24202
https://notcve.org/view.php?id=CVE-2023-24202
Raffle Draw System v1.0 was discovered to contain a local file inclusion vulnerability via the page parameter in index.php. • https://github.com/xiumulty/CVE/blob/main/Raffle%20draw%20system%20v1.0/lfi%20in%20index.php.md https://www.sourcecodester.com/php/15951/raffle-draw-system-using-php-and-javascript-free-source-code.html • CWE-434: Unrestricted Upload of File with Dangerous Type •
CVSS: 9.8EPSS: 0%CPEs: 1EXPL: 1CVE-2023-24200
https://notcve.org/view.php?id=CVE-2023-24200
Raffle Draw System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at save_ticket.php. • https://github.com/xiumulty/CVE/blob/main/Raffle%20draw%20system%20v1.0/sql%20in%20save_ticket.php.md https://www.sourcecodester.com/php/15951/raffle-draw-system-using-php-and-javascript-free-source-code.html • CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') •