CVSS: 5.3EPSS: 0%CPEs: 1EXPL: 1CVE-2024-5121 – SourceCodester Event Registration System cross site scripting
https://notcve.org/view.php?id=CVE-2024-5121
A vulnerability was found in SourceCodester Event Registration System 1.0. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the file /registrar/?page=registration. The manipulation of the argument e leads to cross site scripting. • https://github.com/BurakSevben/CVEs/blob/main/Event%20Registration%20System/Event%20Registration%20System%20-%20Cross-Site-Scripting%20-%202.md https://vuldb.com/?ctiid.265201 https://vuldb.com/?id.265201 https://vuldb.com/?submit.338617 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVSS: 6.5EPSS: 0%CPEs: 1EXPL: 1CVE-2024-5120 – SourceCodester Event Registration System sql injection
https://notcve.org/view.php?id=CVE-2024-5120
A vulnerability was found in SourceCodester Event Registration System 1.0. It has been classified as critical. Affected is an unknown function of the file /registrar/?page=registration. The manipulation of the argument e leads to sql injection. • https://github.com/BurakSevben/CVEs/blob/main/Event%20Registration%20System/Event%20Registration%20System%20-%20SQL%20Injection%20-%203.md https://vuldb.com/?ctiid.265200 https://vuldb.com/?id.265200 https://vuldb.com/?submit.338614 • CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') •
CVSS: 6.5EPSS: 0%CPEs: 1EXPL: 1CVE-2024-5119 – SourceCodester Event Registration System sql injection
https://notcve.org/view.php?id=CVE-2024-5119
A vulnerability was found in SourceCodester Event Registration System 1.0 and classified as critical. This issue affects some unknown processing of the file /classes/Master.php?f=load_registration. The manipulation of the argument last_id/event_id leads to sql injection. The attack may be initiated remotely. • https://github.com/BurakSevben/CVEs/blob/main/Event%20Registration%20System/Event%20Registration%20System%20-%20SQL%20Injection%20-%202.md https://vuldb.com/?ctiid.265199 https://vuldb.com/?id.265199 https://vuldb.com/?submit.338613 • CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') •
CVSS: 7.5EPSS: 0%CPEs: 1EXPL: 1CVE-2024-5118 – SourceCodester Event Registration System login.php sql injection
https://notcve.org/view.php?id=CVE-2024-5118
A vulnerability has been found in SourceCodester Event Registration System 1.0 and classified as critical. This vulnerability affects unknown code of the file /admin/login.php. The manipulation of the argument username/password leads to sql injection. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used. • https://github.com/BurakSevben/CVEs/blob/main/Event%20Registration%20System/Event%20Registration%20System%20-%20SQL%20Injection%20-%201.md https://vuldb.com/?ctiid.265198 https://vuldb.com/?id.265198 https://vuldb.com/?submit.338612 • CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') •
CVSS: 7.5EPSS: 0%CPEs: 1EXPL: 1CVE-2024-5117 – SourceCodester Event Registration System portal.php sql injection
https://notcve.org/view.php?id=CVE-2024-5117
A vulnerability, which was classified as critical, was found in SourceCodester Event Registration System 1.0. This affects an unknown part of the file portal.php. The manipulation of the argument username/password leads to sql injection. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used. • https://github.com/BurakSevben/CVEs/blob/main/Event%20Registration%20System/Event%20Registration%20System%20-%20SQL%20Injection%20-%201.md https://vuldb.com/?ctiid.265197 https://vuldb.com/?id.265197 • CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') •