CVE-2024-6191 – itsourcecode Student Management System Login Page login.php sql injection
https://notcve.org/view.php?id=CVE-2024-6191
A vulnerability classified as critical has been found in itsourcecode Student Management System 1.0. This affects an unknown part of the file login.php of the component Login Page. The manipulation of the argument user leads to sql injection. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used. • https://github.com/HryspaHodor/CVE/issues/3 https://vuldb.com/?ctiid.269163 https://vuldb.com/?id.269163 https://vuldb.com/?submit.359009 • CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') •
CVE-2024-6190 – itsourcecode Farm Management System Login index.php sql injection
https://notcve.org/view.php?id=CVE-2024-6190
A vulnerability was found in itsourcecode Farm Management System 1.0. It has been rated as critical. Affected by this issue is some unknown functionality of the file index.php of the component Login. The manipulation of the argument username leads to sql injection. The attack may be launched remotely. • https://github.com/HryspaHodor/CVE/issues/2 https://vuldb.com/?ctiid.269162 https://vuldb.com/?id.269162 https://vuldb.com/?submit.359008 • CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') •
CVE-2024-6113 – itsourcecode Monbela Tourist Inn Online Reservation System login.php sql injection
https://notcve.org/view.php?id=CVE-2024-6113
A vulnerability was found in itsourcecode Monbela Tourist Inn Online Reservation System 1.0. It has been rated as critical. This issue affects some unknown processing of the file login.php. The manipulation of the argument email leads to sql injection. The attack may be initiated remotely. • https://github.com/wangyuan-ui/CVE/issues/3 https://vuldb.com/?ctiid.268865 https://vuldb.com/?id.268865 https://vuldb.com/?submit.358991 • CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') •
CVE-2024-6116 – itsourcecode Simple Online Hotel Reservation System edit_room.php unrestricted upload
https://notcve.org/view.php?id=CVE-2024-6116
A vulnerability, which was classified as critical, has been found in itsourcecode Simple Online Hotel Reservation System 1.0. Affected by this issue is some unknown functionality of the file edit_room.php. The manipulation of the argument photo leads to unrestricted upload. The attack may be launched remotely. The exploit has been disclosed to the public and may be used. • https://github.com/wangyuan-ui/CVE/issues/6 https://vuldb.com/?ctiid.268868 https://vuldb.com/?id.268868 https://vuldb.com/?submit.359002 • CWE-434: Unrestricted Upload of File with Dangerous Type •
CVE-2024-6115 – itsourcecode Simple Online Hotel Reservation System add_room.php unrestricted upload
https://notcve.org/view.php?id=CVE-2024-6115
A vulnerability classified as critical was found in itsourcecode Simple Online Hotel Reservation System 1.0. Affected by this vulnerability is an unknown functionality of the file add_room.php. The manipulation of the argument photo leads to unrestricted upload. The attack can be launched remotely. The exploit has been disclosed to the public and may be used. • https://github.com/wangyuan-ui/CVE/issues/5 https://vuldb.com/?ctiid.268867 https://vuldb.com/?id.268867 https://vuldb.com/?submit.358996 • CWE-434: Unrestricted Upload of File with Dangerous Type •