Search Results | AttackerKB

Show filters

Topics 2 Users 0

Clear All

Disclosure Date

Disclosure Year Disclosure Month

Collection Command and Control Credential Access Defense Evasion Discovery Execution Exfiltration Impact Initial Access Lateral Movement Persistence Privilege Escalation

2 Total Results

Displaying 1-2 of 2

Attacker Value

Moderate

CVE-2020-5307

Disclosure Date: January 07, 2020 (last updated November 15, 2023)

PHPGurukul Dairy Farm Shop Management System 1.0 is vulnerable to SQL injection, as demonstrated by the username parameter in index.php, the category and CategoryCode parameters in add-category.php, the CompanyName parameter in add-company.php, and the ProductName and ProductPrice parameters in add-product.php.

Attack Vector: Network Privileges: None User Interaction: None

0

Attacker Value

Very Low

CVE-2020-5308

Disclosure Date: January 07, 2020 (last updated November 15, 2023)

PHPGurukul Dairy Farm Shop Management System 1.0 is vulnerable to XSS, as demonstrated by the category and CategoryCode parameters in add-category.php, the CompanyName parameter in add-company.php, and the ProductName parameter in add-product.php.

Attack Vector: Network Privileges: None User Interaction: Required

0