|
313001
|
4.3 |
MEDIUM
Network
|
monospace
|
directus
|
Directus v10.13.0 allows an authenticated external attacker to modify presets created by the same user to assign them to another user. This is possible because the application only validates the user…
|
CWE-639
Authorization Bypass Through User-Controlled Key
|
CVE-2024-6534
|
2024-08-20 03:17 |
2024-08-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
313002
|
7.5 |
HIGH
Network
|
prison_management_system_project
|
prison_management_system
|
A vulnerability, which was classified as problematic, has been found in SourceCodester Prison Management System 1.0. This issue affects some unknown processing of the file /uploadImage/Profile/ of th…
|
CWE-522
Insufficiently Protected Credentials
|
CVE-2024-7813
|
2024-08-20 03:16 |
2024-08-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
313003
|
5.4 |
MEDIUM
Network
|
mayurik
|
best_house_rental_management_system
|
A vulnerability classified as problematic was found in SourceCodester Best House Rental Management System 1.0. This vulnerability affects unknown code of the file /rental_0/rental/ajax.php?action=sav…
|
CWE-79
Cross-site Scripting
|
CVE-2024-7812
|
2024-08-20 03:16 |
2024-08-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
313004
|
9.8 |
CRITICAL
Network
|
rems
|
daily_expenses_monitoring_app
|
A vulnerability classified as critical has been found in SourceCodester Daily Expenses Monitoring App 1.0. This affects an unknown part of the file /endpoint/delete-expense.php. The manipulation of t…
|
CWE-89
SQL Injection
|
CVE-2024-7811
|
2024-08-20 03:15 |
2024-08-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
313005
|
5.4 |
MEDIUM
Network
|
monospace
|
directus
|
Directus v10.13.0 allows an authenticated external attacker to execute arbitrary JavaScript on the client. This is possible because the application injects an attacker-controlled parameter that will …
|
CWE-79
Cross-site Scripting
|
CVE-2024-6533
|
2024-08-20 03:13 |
2024-08-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
313006
|
8.8 |
HIGH
Network
|
tamparongj_03
|
online_graduate_tracer_system
|
A vulnerability was found in SourceCodester Online Graduate Tracer System 1.0. It has been rated as critical. Affected by this issue is some unknown functionality of the file /tracking/admin/view_itp…
|
CWE-89
SQL Injection
|
CVE-2024-7810
|
2024-08-20 03:12 |
2024-08-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
313007
|
5.3 |
MEDIUM
Network
|
tamparongj_03
|
online_graduate_tracer_system
|
A vulnerability was found in SourceCodester Online Graduate Tracer System 1.0. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the file /tracking/nb…
|
NVD-CWE-Other
|
CVE-2024-7809
|
2024-08-20 03:11 |
2024-08-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
313008
|
9.8 |
CRITICAL
Network
|
fabianros
|
job_portal
|
A vulnerability was found in code-projects Job Portal 1.0. It has been classified as critical. Affected is an unknown function of the file logindbc.php. The manipulation of the argument email leads t…
|
CWE-89
SQL Injection
|
CVE-2024-7808
|
2024-08-20 03:07 |
2024-08-15 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
313009
|
7.5 |
HIGH
Network
|
oretnom23
|
clinic\'s_patient_management_system
|
A vulnerability was found in SourceCodester Clinics Patient Management System 1.0. It has been rated as critical. This issue affects some unknown processing of the file /ajax/check_medicine_name.php.…
|
CWE-89
SQL Injection
|
CVE-2024-7754
|
2024-08-20 02:48 |
2024-08-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
313010
|
6.1 |
MEDIUM
Network
|
oretnom23
|
clinic\'s_patient_management_system
|
A vulnerability was found in SourceCodester Clinics Patient Management System 1.0. It has been classified as problematic. This affects an unknown part of the file /update_medicine.php. The manipulati…
|
CWE-79
Cross-site Scripting
|
CVE-2024-7752
|
2024-08-20 02:48 |
2024-08-14 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
