CVE-2023-5836 – SourceCodester Task Reminder System sql injection
https://notcve.org/view.php?id=CVE-2023-5836
A vulnerability was found in SourceCodester Task Reminder System 1.0. It has been rated as critical. Affected by this issue is some unknown functionality of the file classes/Users.php?f=delete. The manipulation of the argument id leads to sql injection. • https://vuldb.com/?ctiid.243800 https://vuldb.com/?id.243800 • CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') •
CVE-2023-31705
https://notcve.org/view.php?id=CVE-2023-31705
A Reflected Cross-site scripting (XSS) vulnerability in Sourcecodester Task Reminder System 1.0 allows an authenticated user to inject malicious javascript into the page parameter. • https://github.com/d34dun1c02n/CVE-2023-31705 https://www.sourcecodester.com/download-code?nid=16451&title=Task+Reminder+System+in+PHP+and+MySQL+Source+Code+Free+Download • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVE-2023-2219 – SourceCodester Task Reminder System Users.php cross site scripting
https://notcve.org/view.php?id=CVE-2023-2219
A vulnerability was found in SourceCodester Task Reminder System 1.0 and classified as problematic. This issue affects some unknown processing of the file /classes/Users.php. The manipulation of the argument id leads to cross site scripting. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used. • https://github.com/E1CHO/cve_hub/blob/main/Task%20Reminder%20System/Task%20Reminder%20System%20-%20vuln%204.pdf https://vuldb.com/?ctiid.226985 https://vuldb.com/?id.226985 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVE-2023-2218 – SourceCodester Task Reminder System manage_user.php sql injection
https://notcve.org/view.php?id=CVE-2023-2218
A vulnerability has been found in SourceCodester Task Reminder System 1.0 and classified as critical. This vulnerability affects unknown code of the file /admin/user/manage_user.php. The manipulation of the argument id leads to sql injection. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used. • https://github.com/E1CHO/cve_hub/blob/main/Task%20Reminder%20System/Task%20Reminder%20System%20-%20vuln%203.pdf https://vuldb.com/?ctiid.226984 https://vuldb.com/?id.226984 • CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') •
CVE-2023-2217 – SourceCodester Task Reminder System manage_reminder.php sql injection
https://notcve.org/view.php?id=CVE-2023-2217
A vulnerability, which was classified as critical, was found in SourceCodester Task Reminder System 1.0. This affects an unknown part of the file /admin/reminders/manage_reminder.php. The manipulation of the argument id leads to sql injection. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used. • https://github.com/E1CHO/cve_hub/blob/main/Task%20Reminder%20System/Task%20Reminder%20System%20-%20vuln%202.pdf https://vuldb.com/?ctiid.226983 https://vuldb.com/?id.226983 • CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') •