Aggregator

CVE-2024-8220 | itsourcecode Tailoring Management System 1.0 staffedit.php id/stafftype/address/fullname/phonenumber/salary sql injection

VulDB Recent Entries
1 year 9 months ago
A vulnerability was found in itsourcecode Tailoring Management System 1.0. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file staffedit.php. The manipulation of the argument id/stafftype/address/fullname/phonenumber/salary leads to sql injection. This vulnerability is known as CVE-2024-8220. The attack can be launched remotely. Furthermore, there is an exploit available.
vuldb.com

CVE-2024-8219 | code-projects Responsive Hotel Site 1.0 index.php name/phone/email sql injection

VulDB Recent Entries
1 year 9 months ago
A vulnerability was found in code-projects Responsive Hotel Site 1.0. It has been classified as critical. Affected is an unknown function of the file index.php. The manipulation of the argument name/phone/email leads to sql injection. This vulnerability is traded as CVE-2024-8219. It is possible to launch the attack remotely. Furthermore, there is an exploit available.
vuldb.com

CVE-2024-8217 | SourceCodester E-Commerce Website 1.0 /Admin/registration.php fname sql injection

VulDB Recent Entries
1 year 9 months ago
A vulnerability has been found in SourceCodester E-Commerce Website 1.0 and classified as critical. This vulnerability affects unknown code of the file /Admin/registration.php. The manipulation of the argument fname leads to sql injection. This vulnerability was named CVE-2024-8217. The attack can be initiated remotely. Furthermore, there is an exploit available.
vuldb.com

CVE-2024-8207 | MongoDB Server up to 5.0.13/6.0.2 on Linux Library process control

VulDB Recent Entries
1 year 9 months ago
A vulnerability, which was classified as critical, was found in MongoDB Server up to 5.0.13/6.0.2 on Linux. This affects an unknown part of the component Library Handler. The manipulation leads to process control. This vulnerability is uniquely identified as CVE-2024-8207. The attack needs to be approached locally. There is no exploit available. It is recommended to upgrade the affected component.
vuldb.com

CVE-2024-8216 | nafisulbari/itsourcecode Insurance Management System 1.0 Payment editPayment.php recipt_no access control

VulDB Recent Entries
1 year 9 months ago
A vulnerability, which was classified as critical, has been found in nafisulbari/itsourcecode Insurance Management System 1.0. Affected by this issue is some unknown functionality of the file editPayment.php of the component Payment Handler. The manipulation of the argument recipt_no leads to improper access controls. This vulnerability is handled as CVE-2024-8216. The attack may be launched remotely. There is no exploit available. The vendor was contacted early about this disclosure but did not respond in any way.
vuldb.com

Managed ad