CVSS: 5.3EPSS: 0%CPEs: 1EXPL: 1CVE-2024-8610 – SourceCodester Best House Rental Management System New Tenant Page index.php cross site scripting
https://notcve.org/view.php?id=CVE-2024-8610
A vulnerability classified as problematic has been found in SourceCodester Best House Rental Management System 1.0. Affected is an unknown function of the file /index.php?page=tenants of the component New Tenant Page. The manipulation of the argument Last Name/First Name/Middle Name leads to cross site scripting. It is possible to launch the attack remotely. • https://drive.google.com/file/d/1mB2ZNyWJDqJaZZro4qiMqovRO_qo4pss/view?usp=sharing https://vuldb.com/?ctiid.276840 https://vuldb.com/?id.276840 https://vuldb.com/?submit.404867 https://www.sourcecodester.com • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVSS: 6.9EPSS: 0%CPEs: 1EXPL: 0CVE-2024-8604 – SourceCodester Online Food Ordering System Create an Account Page index.php cross site scripting
https://notcve.org/view.php?id=CVE-2024-8604
A vulnerability classified as problematic has been found in SourceCodester Online Food Ordering System 2.0. This affects an unknown part of the file index.php of the component Create an Account Page. The manipulation of the argument First Name/Last Name leads to cross site scripting. It is possible to initiate the attack remotely. Es wurde eine Schwachstelle in SourceCodester Online Food Ordering System 2.0 entdeckt. • https://vuldb.com/?id.276831 https://vuldb.com/?ctiid.276831 https://vuldb.com/?submit.404660 https://www.sourcecodester.com • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVSS: 5.3EPSS: 0%CPEs: 2EXPL: 1CVE-2024-8583 – SourceCodester Online Bank Management System Feedback mfeedback.php cross site scripting
https://notcve.org/view.php?id=CVE-2024-8583
A vulnerability was found in SourceCodester Online Bank Management System and Online Bank Management System - 1.0. It has been classified as problematic. This affects an unknown part of the file /mfeedback.php of the component Feedback Handler. The manipulation leads to cross site scripting. It is possible to initiate the attack remotely. • https://github.com/Niu-zida/cve/blob/main/Storage-optimized%20Cross-site%20scripting%20vulnerability.md https://vuldb.com/?ctiid.276819 https://vuldb.com/?id.276819 https://vuldb.com/?submit.404611 https://www.sourcecodester.com • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVSS: 5.3EPSS: 0%CPEs: 1EXPL: 1CVE-2024-8582 – SourceCodester Food Ordering Management System index.php cross site scripting
https://notcve.org/view.php?id=CVE-2024-8582
A vulnerability was found in SourceCodester Food Ordering Management System 1.0 and classified as problematic. Affected by this issue is some unknown functionality of the file /index.php. The manipulation of the argument description leads to cross site scripting. The attack may be launched remotely. The exploit has been disclosed to the public and may be used. • https://github.com/Niu-zida/cve/blob/main/Cross-Site%20Scripting.md https://vuldb.com/?ctiid.276818 https://vuldb.com/?id.276818 https://vuldb.com/?submit.404604 https://www.sourcecodester.com • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVSS: 6.5EPSS: 0%CPEs: 1EXPL: 0CVE-2024-8564 – SourceCodester PHP CRUD update.php sql injection
https://notcve.org/view.php?id=CVE-2024-8564
A vulnerability was found in SourceCodester PHP CRUD 1.0. It has been declared as critical. This vulnerability affects unknown code of the file /endpoint/update.php. The manipulation of the argument tbl_person_id/first_name/middle_name/last_name leads to sql injection. The attack can be initiated remotely. • https://vuldb.com/?ctiid.276784 https://vuldb.com/?id.276784 https://vuldb.com/?submit.403662 https://www.sourcecodester.com • CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') •