Employee Management System version 1.0-2024 suffers from a remote SQL injection vulnerability. Original discovery of this finding is attributed to Ozlem Balci in January of 2024.
01f9a437e502773164c42d18db293d6d010978a568703d9945cb9bfe002238b5
Fuelflow version 1.0 suffers from a remote SQL injection vulnerability.
f20df871b015a83f2890d65c542097b8e2ef692547a8a6b09c7f09efd6242502
XoopsCore25 version 2.5.11 suffers from a cross site scripting vulnerability.
2ae84d82db1b05e74c65de107834f1df7a00fa59f13b38b64eb16a00c14b1b92
Interactive Floor Plan version 1.0 suffers from a cross site scripting vulnerability.
696171fac915ad8521ab878bf8dd8496a69db4eedb1b4fe9f216fbfde57545ec
PHPJ Callback Widget version 1.0 suffers from a persistent cross site scripting vulnerability.
5a4188d904853b282526ec16d8c5d6f9a6a772e2951744e041fdfe4a31e26fed
Copyright Loan Management System 2024 version 1.0 suffers from a remote SQL Injection vulnerability that allows for authentication bypass.
81f2d79192a8ae08e110a5c85c1e86c81fdde2f0e93634dadfd078e332a66370
CMSMS version 2.2.19 suffers from an arbitrary file upload vulnerability.
10d444684a1178256d641dcf6a31e78bdb9b5db129a97ebd890d4e09119b515c
osCommerce version 4.13-60075 suffers from a remote shell upload vulnerability.
ec2851de45716323cc9586ace2e5ab5f4c1232d38a2afff9df61187983d1047d
Kopage Website Builder version 4.4.15 appears to suffer from a remote shell upload vulnerability.
c7c044286a2574e2349a91e45670f2ab02c5df6ed10e4f242160211e6c892661
CE Phoenixcart version 1.0.8.20 suffers from a remote shell upload vulnerability.
07b363b061bd5168064a8bc9eb0e871c0ae4e8d96a0a87798b419cec452c6070
Penglead version 2.0 suffers from a remote SQL Injection vulnerability that allows for authentication bypass.
aad0a8f1f099096020f31cfa1d95cf247087344cc3af7be040e0b53f6b1a8763
Travel version 1.0 suffers from a remote SQL injection vulnerability.
ac6aa5732240ade04ba1428e983e06a776d211b34482255a55bcc84f1fa934f3
2023 Mount Carmel School version 6.4.1 suffers from a cross site scripting vulnerability.
1468507ac0b5b0ce74969400a56999cea8841d359cc06c655a563f09bfa94b92
Dawa Pharma version 1.0-2022 suffers from a remote SQL injection vulnerability.
f4e5f3b21053e45bc64dfe5a4a134118801da152919bd521c82fa9b04dad9204
Gaatitrack version 1.0-2023 suffers from a remote SQL injection vulnerability.
7ccf1147a424ff372e8b88c94bb79a0c346cc122901db3c20a37b33565cf49df
Taskhub version 2.8.8 suffers from a cross site scripting vulnerability.
6848bc97935d0e957e7130f797a4d53871d013225ec80f59f0fcfe2afb38638c
Night Club Booking Software version 1.0 suffers from a cross site scripting vulnerability.
dff51d8b253d9631dee285face4809594062abc6803e40cbd31f7c69cd6e0641
PHP Shopping Cart version 4.2 suffers from a remote SQL injection vulnerability.
606411a83a93b9d6c705936cd642d323cf06f1e728faa5294bef0c1a617f8551
Fundraising Script version 1.0 suffers from a remote SQL injection vulnerability.
76dba00a4fbcde8d324da447dccd0ff8dba00a8a1ec438def34676181cb1ab16
Equipment Rental Script version 1.0 suffers from a remote SQL injection vulnerability.
0ba0b1672e1ad0be57f6d8f077920536af11fdbfb040d7ce6901297ef47e3d6d
Shuttle Booking Software version 1.0 suffers from multiple remote SQL injection vulnerabilities.
2f166a08f72bc0bb5b865c2213633f7124559daa246d92349ec91d4e5095f545
Event Ticketing System version 1.0 suffers from a cross site scripting vulnerability.
9d31a0bc4ced5634ea569847d5f97ea5c94eb3a679608aa038f73927e788ae98
Drupal version 10.1.2 appears to suffer from web cache poisoning due to a server-side request forgery vulnerability.
bae7ee7ca74d0d64c1344141e791c8d6d0db4ab73d42cc624ef98154db59b959
Soosyze version 2.0.0 suffers from an arbitrary file upload vulnerability.
9bf6b6526253f4c7c6238da3c5ad49f7a905e6d95335d5b8a7f1c835151822b1
Meeting Room Booking System version 1.0 suffers from multiple remote SQL injection vulnerabilities.
0e1dfa3a3c2ae9b8d2c6c871101c257812a050e713740d14082f2cc1bdf75b05