6.9
CVE-2024-10157 - PHPGurukul Boat Booking System Reset Your Password Page password-recovery.php sql injection
A vulnerability was found in PHPGurukul Boat Booking System 1.0. It has been rated as critical. This issue affects some unknown processing of the file /admin/password-recovery.php of the component Reset Your Password Page. The manipulation of the argument username/mobileno leads to sql injection. Tβ¦
6.9
CVE-2024-10156 - PHPGurukul Boat Booking System Sign In Page index.php sql injection
A vulnerability was found in PHPGurukul Boat Booking System 1.0. It has been declared as critical. This vulnerability affects unknown code of the file /admin/index.php of the component Sign In Page. The manipulation of the argument username leads to sql injection. The attack can be initiated remoteβ¦
5.3
CVE-2024-10155 - PHPGurukul Boat Booking System Book a Boat Page book-boat.php cross site scripting
A vulnerability was found in PHPGurukul Boat Booking System 1.0. It has been classified as problematic. This affects an unknown part of the file book-boat.php?bid=1 of the component Book a Boat Page. The manipulation of the argument phone_number leads to cross site scripting. It is possible to initβ¦
5.3
CVE-2024-10154 - PHPGurukul Boat Booking System Check Booking Status Page status.php sql injection
A vulnerability was found in PHPGurukul Boat Booking System 1.0 and classified as critical. Affected by this issue is some unknown functionality of the file status.php of the component Check Booking Status Page. The manipulation of the argument emailid leads to sql injection. The attack may be launβ¦
5.3
CVE-2024-10153 - PHPGurukul Boat Booking System Book a Boat Page book-boat.php sql injection
A vulnerability has been found in PHPGurukul Boat Booking System 1.0 and classified as critical. Affected by this vulnerability is an unknown functionality of the file book-boat.php?bid=1 of the component Book a Boat Page. The manipulation of the argument bookingdatefrom/nopeople leads to sql injecβ¦
5.3
CVE-2024-10142 - code-projects Blood Bank System viewrequest.php cross site scripting
A vulnerability has been found in code-projects Blood Bank System 1.0 and classified as problematic. This vulnerability affects unknown code of the file /viewrequest.php. The manipulation leads to cross site scripting. The attack can be initiated remotely. The exploit has been disclosed to the publβ¦
6.3
CVE-2024-10141 - jsbroks COCO Annotator Session predictable state
A vulnerability, which was classified as problematic, was found in jsbroks COCO Annotator 0.11.1. This affects an unknown part of the component Session Handler. The manipulation of the argument SECRET_KEY leads to predictable from observable state. It is possible to initiate the attack remotely. Thβ¦
5.3
CVE-2024-10140 - code-projects Pharmacy Management System manage_supplier.php sql injection
A vulnerability, which was classified as critical, has been found in code-projects Pharmacy Management System 1.0. Affected by this issue is some unknown functionality of the file /manage_supplier.php. The manipulation of the argument id leads to sql injection. The attack may be launched remotely. β¦
5.3
CVE-2024-10139 - code-projects Pharmacy Management System add_new_supplier.php sql injection
A vulnerability classified as critical was found in code-projects Pharmacy Management System 1.0. Affected by this vulnerability is an unknown functionality of the file /add_new_supplier.php. The manipulation of the argument name leads to sql injection. The attack can be launched remotely. The explβ¦
5.3
CVE-2024-10138 - code-projects Pharmacy Management System add_new_purchase.php sql injection
A vulnerability classified as critical has been found in code-projects Pharmacy Management System 1.0. Affected is an unknown function of the file /add_new_purchase.php?action=is_supplier. The manipulation of the argument name leads to sql injection. It is possible to launch the attack remotely. Thβ¦