9 results (0.018 seconds)

CVSS: 5.3EPSS: 0%CPEs: 1EXPL: 1

A vulnerability, which was classified as problematic, was found in SourceCodester Lot Reservation Management System 1.0. This affects an unknown part of the file /admin/ajax.php?action=save_settings. The manipulation of the argument about leads to cross site scripting. It is possible to initiate the attack remotely. • https://gist.github.com/topsky979/16da371a38fd91d64765fd16ed3d049e https://vuldb.com/?ctiid.273153 https://vuldb.com/?id.273153 https://vuldb.com/?submit.381223 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •

CVSS: 6.5EPSS: 0%CPEs: 1EXPL: 1

A vulnerability, which was classified as critical, has been found in SourceCodester Lot Reservation Management System 1.0. Affected by this issue is some unknown functionality of the file /admin/manage_user.php. The manipulation of the argument id leads to sql injection. The attack may be launched remotely. The exploit has been disclosed to the public and may be used. • https://gist.github.com/topsky979/0cda40ceee628634e4bc984cc5651b51 https://vuldb.com/?ctiid.273152 https://vuldb.com/?id.273152 https://vuldb.com/?submit.381199 • CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') •

CVSS: 6.5EPSS: 0%CPEs: 1EXPL: 1

A vulnerability classified as critical was found in SourceCodester Lot Reservation Management System 1.0. Affected by this vulnerability is an unknown functionality of the file /admin/manage_model.php. The manipulation of the argument id leads to sql injection. The attack can be launched remotely. The exploit has been disclosed to the public and may be used. • https://gist.github.com/topsky979/16181c02e770952091a36784da530eab https://vuldb.com/?ctiid.273151 https://vuldb.com/?id.273151 https://vuldb.com/?submit.381198 • CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') •

CVSS: 6.5EPSS: 0%CPEs: 1EXPL: 1

A vulnerability classified as critical has been found in SourceCodester Lot Reservation Management System 1.0. Affected is an unknown function of the file /admin/index.php?page=manage_lot. The manipulation of the argument id leads to sql injection. It is possible to launch the attack remotely. • https://gist.github.com/topsky979/13cfd55966ffe12c8904de995400fc33 https://vuldb.com/?ctiid.273150 https://vuldb.com/?id.273150 https://vuldb.com/?submit.381197 • CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') •

CVSS: 6.5EPSS: 0%CPEs: 1EXPL: 1

A vulnerability was found in SourceCodester Lot Reservation Management System 1.0. It has been rated as critical. This issue affects some unknown processing of the file /admin/view_reserved.php. The manipulation of the argument id leads to sql injection. The attack may be initiated remotely. • https://gist.github.com/topsky979/c4e972f03739833ad2d111493f44138b https://vuldb.com/?ctiid.273149 https://vuldb.com/?id.273149 https://vuldb.com/?submit.381196 • CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') •