Show filters
104 Total Results
Displaying 51-60 of 104
Sort by:
Attacker Value
Unknown
CVE-2023-45340
Disclosure Date: November 02, 2023 (last updated December 01, 2023)
Online Food Ordering System v1.0 is vulnerable to multiple Unauthenticated SQL Injection vulnerabilities. The 'phone' parameter of the routers/details-router.php resource does not validate the characters received and they are sent unfiltered to the database.
0
Attacker Value
Unknown
CVE-2023-45336
Disclosure Date: November 02, 2023 (last updated December 01, 2023)
Online Food Ordering System v1.0 is vulnerable to multiple Unauthenticated SQL Injection vulnerabilities. The 'password' parameter of the routers/router.php resource does not validate the characters received and they are sent unfiltered to the database.
0
Attacker Value
Unknown
CVE-2023-45334
Disclosure Date: November 02, 2023 (last updated November 10, 2023)
Online Food Ordering System v1.0 is vulnerable to multiple Unauthenticated SQL Injection vulnerabilities. The 'status' parameter of the routers/edit-orders.php resource does not validate the characters received and they are sent unfiltered to the database.
0
Attacker Value
Unknown
CVE-2023-45325
Disclosure Date: November 02, 2023 (last updated November 10, 2023)
Online Food Ordering System v1.0 is vulnerable to multiple Unauthenticated SQL Injection vulnerabilities. The 'address' parameter of the routers/add-users.php resource does not validate the characters received and they are sent unfiltered to the database.
0
Attacker Value
Unknown
CVE-2023-45323
Disclosure Date: November 02, 2023 (last updated November 10, 2023)
Online Food Ordering System v1.0 is vulnerable to multiple Unauthenticated SQL Injection vulnerabilities. The 'name' parameter of the routers/add-item.php resource does not validate the characters received and they are sent unfiltered to the database.
0
Attacker Value
Unknown
CVE-2023-45203
Disclosure Date: November 01, 2023 (last updated November 09, 2023)
Online Examination System v1.0 is vulnerable to multiple Open Redirect vulnerabilities. The 'q' parameter of the login.php resource allows an attacker to redirect a victim user to an arbitrary web site using a crafted URL.
0
Attacker Value
Unknown
CVE-2023-45202
Disclosure Date: November 01, 2023 (last updated November 09, 2023)
Online Examination System v1.0 is vulnerable to multiple Open Redirect vulnerabilities. The 'q' parameter of the feed.php resource allows an attacker to redirect a victim user to an arbitrary web site using a crafted URL.
0
Attacker Value
Unknown
CVE-2023-45201
Disclosure Date: November 01, 2023 (last updated November 09, 2023)
Online Examination System v1.0 is vulnerable to multiple Open Redirect vulnerabilities. The 'q' parameter of the admin.php resource allows an attacker to redirect a victim user to an arbitrary web site using a crafted URL.
0
Attacker Value
Unknown
CVE-2023-44484
Disclosure Date: October 31, 2023 (last updated September 06, 2024)
Online Blood Donation Management System v1.0 is vulnerable to a Stored Cross-Site Scripting vulnerability. The 'firstName' parameter of the users/register.php resource is copied into the users/member.php document as plain text between tags. Any input is echoed unmodified in the users/member.php response.
0
Attacker Value
Unknown
CVE-2023-44480
Disclosure Date: October 27, 2023 (last updated November 08, 2023)
Leave Management System Project v1.0 is vulnerable to multiple Authenticated SQL Injection vulnerabilities. The 'setcasualleave' parameter of the admin/setleaves.php resource does not validate the characters received and they are sent unfiltered to the database.
0
