Page 20 of 118 results (0.002 seconds)

CVSS: 9.8EPSS: 0%CPEs: 1EXPL: 1

A vulnerability classified as critical was found in itsourcecode Online House Rental System 1.0. Affected by this vulnerability is an unknown functionality of the file manage_user.php. The manipulation of the argument month_of leads to sql injection. The attack can be launched remotely. The exploit has been disclosed to the public and may be used. • https://github.com/chenwulin-bit/cve/issues/1 https://vuldb.com/?ctiid.268723 https://vuldb.com/?id.268723 https://vuldb.com/?submit.357462 • CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') •

CVSS: 9.8EPSS: 0%CPEs: 1EXPL: 1

A vulnerability classified as critical has been found in itsourcecode Document Management System 1.0. Affected is an unknown function of the file edithis.php. The manipulation of the argument id leads to sql injection. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used. • https://github.com/gabriel202212/cve/issues/2 https://vuldb.com/?ctiid.268722 https://vuldb.com/?id.268722 https://vuldb.com/?submit.357246 • CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') •

CVSS: 9.8EPSS: 0%CPEs: 1EXPL: 1

A vulnerability was found in itsourcecode Online Book Store 1.0. It has been rated as critical. This issue affects some unknown processing of the file admin_delete.php. The manipulation of the argument bookisbn leads to sql injection. The attack may be initiated remotely. • https://github.com/gabriel202212/cve/issues/1 https://vuldb.com/?ctiid.268721 https://vuldb.com/?id.268721 https://vuldb.com/?submit.357075 • CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') •

CVSS: 9.8EPSS: 0%CPEs: 1EXPL: 1

A vulnerability has been found in itsourcecode Event Calendar 1.0 and classified as critical. Affected by this vulnerability is the function regConfirm/regDelete of the file process.php. The manipulation of the argument userId leads to sql injection. The attack can be launched remotely. The exploit has been disclosed to the public and may be used. • https://github.com/AutoZhou1/cve/issues/1 https://vuldb.com/?ctiid.268699 https://vuldb.com/?id.268699 https://vuldb.com/?submit.357243 • CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') •

CVSS: 9.8EPSS: 0%CPEs: 1EXPL: 1

A vulnerability was found in itsourcecode Online Bookstore 1.0. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file bookPerPub.php. The manipulation of the argument pubid leads to sql injection. The attack can be launched remotely. • https://github.com/LiuYongXiang-git/cve/issues/2 https://vuldb.com/?ctiid.268459 https://vuldb.com/?id.268459 https://vuldb.com/?submit.356164 • CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') •