Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
php php 1.0 vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2024-2266
A vulnerability has been found in keerti1924 Secret-Coder-PHP-Project 1.0 and classified as problematic. This vulnerability affects unknown code of the file /login.php of the component Login Page. The manipulation of the argument emailcookie/passwordcookie leads to cross site scr...
NA
CVE-2024-2264
A vulnerability, which was classified as critical, has been found in keerti1924 PHP-MYSQL-User-Login-System 1.0. Affected by this issue is some unknown functionality of the file /login.php. The manipulation of the argument email leads to sql injection. The attack may be launched ...
NA
CVE-2023-51802
Cross Site Scripting (XSS) vulnerability in the Simple Student Attendance System v.1.0 allows a remote malicious user to execute arbitrary code via a crafted payload to the page or class_month parameter in the /php-attendance/attendance_report component.
1 Github repository
NA
CVE-2024-22983
SQL injection vulnerability in Projectworlds Visitor Management System in PHP v.1.0 allows a remote malicious user to escalate privileges via the name parameter in the myform.php endpoint.
NA
CVE-2024-25866
A SQL Injection vulnerability in CodeAstro Membership Management System in PHP v.1.0 allows a remote malicious user to execute arbitrary SQL commands via the email parameter in the index.php component.
NA
CVE-2024-25867
A SQL Injection vulnerability in CodeAstro Membership Management System in PHP v.1.0 allows a remote malicious user to execute arbitrary SQL commands via the membershipType and membershipAmount parameters in the add_type.php component.
NA
CVE-2024-25868
A Cross Site Scripting (XSS) vulnerability in CodeAstro Membership Management System in PHP v.1.0 allows a remote malicious user to execute arbitrary code via the membershipType parameter in the add_type.php component.
NA
CVE-2024-25869
An Unrestricted File Upload vulnerability in CodeAstro Membership Management System in PHP v.1.0 allows a remote malicious user to execute arbitrary code via upload of a crafted php file in the settings.php component.
NA
CVE-2024-22917
SQL injection vulnerability in Dynamic Lab Management System Project in PHP v.1.0 allows a remote malicious user to execute arbitrary code via a crafted script.
NA
CVE-2024-1702
A vulnerability was found in keerti1924 PHP-MYSQL-User-Login-System 1.0 and classified as critical. Affected by this issue is some unknown functionality of the file /edit.php. The manipulation leads to sql injection. The attack may be launched remotely. The exploit has been discl...
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-33572
CVE-2024-24919
CVE-2024-0230
CVE-2024-32714
HTML injection
local file inclusion
CVE-2024-31098
CVE-2024-31244
privilege
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »