Page 29 of 226 results (0.011 seconds)

CVSS: 6.5EPSS: 0%CPEs: 1EXPL: 1

CVE-2024-2938 – Campcodes Online Examination System updateCourse.php sql injection

https://notcve.org/view.php?id=CVE-2024-2938

A vulnerability was found in Campcodes Online Examination System 1.0. It has been rated as critical. This issue affects some unknown processing of the file /adminpanel/admin/facebox_modal/updateCourse.php. The manipulation of the argument id leads to sql injection. The attack may be initiated remotely. • https://github.com/Beatriz-ai-boop/cve/blob/main/report/1.pdf https://vuldb.com/?ctiid.258029 https://vuldb.com/?id.258029 https://vuldb.com/?submit.304746 • CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') •

CVSS: 5.5EPSS: 0%CPEs: 1EXPL: 1

CVE-2024-2917 – Campcodes House Rental Management System index.php file inclusion

https://notcve.org/view.php?id=CVE-2024-2917

A vulnerability was found in Campcodes House Rental Management System 1.0. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file index.php. The manipulation of the argument page leads to file inclusion. The attack can be launched remotely. • https://github.com/E1CHO/cve_hub/blob/main/House%20Rental%20Management%20System%20-%20vuln%202.pdf https://vuldb.com/?ctiid.257983 https://vuldb.com/?id.257983 https://vuldb.com/?submit.303672 • CWE-73: External Control of File Name or Path •

CVSS: 7.5EPSS: 0%CPEs: 1EXPL: 1

CVE-2024-2916 – Campcodes House Rental Management System ajax.php sql injection

https://notcve.org/view.php?id=CVE-2024-2916

A vulnerability was found in Campcodes House Rental Management System 1.0. It has been classified as critical. Affected is an unknown function of the file ajax.php. The manipulation of the argument username leads to sql injection. It is possible to launch the attack remotely. • https://github.com/E1CHO/cve_hub/blob/main/House%20Rental%20Management%20System%20-%20vuln%201.pdf https://vuldb.com/?ctiid.257982 https://vuldb.com/?id.257982 https://vuldb.com/?submit.303671 • CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') •

CVSS: 4.0EPSS: 0%CPEs: 1EXPL: 5

CVE-2024-2832 – Campcodes Online Shopping System offersmail.php cross site scripting

https://notcve.org/view.php?id=CVE-2024-2832

A vulnerability classified as problematic was found in Campcodes Online Shopping System 1.0. This vulnerability affects unknown code of the file /offersmail.php. The manipulation of the argument email leads to cross site scripting. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used. • https://github.com/Redfox-Secuirty/Asus-RT--N12-B1-s-Privilege-Escalation--CVE--2024--28326 https://github.com/Redfox-Secuirty/Asus-RT--N12-B1-s-CSV-Injection-CVE--2024--28328 https://github.com/Redfox-Secuirty/Asus-RT--N12-B1-s-Insecure-Credential-Storage-CVE--2024--28327 https://github.com/Redfox-Secuirty/Asus-RT-N12-B1-s-Credentials-Stored-in-Cleartext--CVE--2024--28325 https://github.com/comeony/vuln_report/blob/main/Online%20Shopping%20System%20-%20vuln%201.pdf • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •

CVSS: 4.0EPSS: 0%CPEs: 1EXPL: 2

CVE-2024-2780 – Campcodes Online Marriage Registration System admin-profile.php cross site scripting

https://notcve.org/view.php?id=CVE-2024-2780

A vulnerability was found in Campcodes Online Marriage Registration System 1.0. It has been declared as problematic. This vulnerability affects unknown code of the file /admin/admin-profile.php. The manipulation of the argument adminname leads to cross site scripting. The attack can be initiated remotely. • https://github.com/R00tkitSMM/CVE-2024-27804 https://github.com/E1CHO/cve_hub/blob/main/Complete%20Online%20Marriage%20Registration%20System/Complete%20Online%20Marriage%20Registration%20System%20-%20vuln%205.pdf https://vuldb.com/?ctiid.257614 https://vuldb.com/?id.257614 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •