CVSS: 5.3EPSS: 0%CPEs: 1EXPL: 1CVE-2024-7225 – SourceCodester Insurance Management System Edit Insurance Policy Page update_policy cross site scripting
https://notcve.org/view.php?id=CVE-2024-7225
A vulnerability was found in SourceCodester Insurance Management System 1.0. It has been classified as problematic. This affects an unknown part of the file /Script/admin/core/update_policy of the component Edit Insurance Policy Page. The manipulation of the argument pname leads to cross site scripting. It is possible to initiate the attack remotely. • https://vuldb.com/?id.272805 https://vuldb.com/?ctiid.272805 https://vuldb.com/?submit.380967 https://github.com/Xu-Mingming/cve/blob/main/xss2.md • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVSS: 6.5EPSS: 0%CPEs: 1EXPL: 1CVE-2024-7224 – SourceCodester Lot Reservation Management System lot_details.php sql injection
https://notcve.org/view.php?id=CVE-2024-7224
A vulnerability was found in SourceCodester Lot Reservation Management System 1.0 and classified as critical. Affected by this issue is some unknown functionality of the file /lot_details.php. The manipulation of the argument id leads to sql injection. The attack may be launched remotely. The exploit has been disclosed to the public and may be used. • https://gist.github.com/topsky979/76bc2c8ce4871ad8bb60c52e47c4fb5b https://vuldb.com/?ctiid.272804 https://vuldb.com/?id.272804 https://vuldb.com/?submit.380471 • CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') •
CVSS: 6.5EPSS: 0%CPEs: 1EXPL: 1CVE-2024-7223 – SourceCodester Lot Reservation Management System view_model.php sql injection
https://notcve.org/view.php?id=CVE-2024-7223
A vulnerability has been found in SourceCodester Lot Reservation Management System 1.0 and classified as critical. Affected by this vulnerability is an unknown functionality of the file /view_model.php. The manipulation of the argument id leads to sql injection. The attack can be launched remotely. The exploit has been disclosed to the public and may be used. • https://gist.github.com/topsky979/4c28743586769e73fe37007ed92cc1a7 https://vuldb.com/?ctiid.272803 https://vuldb.com/?id.272803 https://vuldb.com/?submit.380470 • CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') •
CVSS: 6.5EPSS: 0%CPEs: 1EXPL: 1CVE-2024-7222 – SourceCodester Lot Reservation Management System home.php sql injection
https://notcve.org/view.php?id=CVE-2024-7222
A vulnerability, which was classified as critical, was found in SourceCodester Lot Reservation Management System 1.0. Affected is an unknown function of the file /home.php. The manipulation of the argument type leads to sql injection. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used. • https://vuldb.com/?id.272802 https://vuldb.com/?ctiid.272802 https://vuldb.com/?submit.380469 https://gist.github.com/topsky979/9f3d490a2bfdb5794dffc2f4aed72250 • CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') •
CVSS: 6.5EPSS: 0%CPEs: 1EXPL: 1CVE-2024-7221 – SourceCodester School Log Management System manage_user.php sql injection
https://notcve.org/view.php?id=CVE-2024-7221
A vulnerability, which was classified as critical, has been found in SourceCodester School Log Management System 1.0. Affected by this issue is some unknown functionality of the file /admin/manage_user.php. The manipulation of the argument id leads to sql injection. The attack may be launched remotely. The exploit has been disclosed to the public and may be used. • https://vuldb.com/?id.272792 https://vuldb.com/?ctiid.272792 https://vuldb.com/?submit.380428 https://gist.github.com/topsky979/1e98c4d1a3ba1ed73aab46d360c1c4b8 • CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') •