CVE-2022-3014 An issue was found in SourceCodester Simple Task Managing System. Manipulating the argument student_add leads to cross site scripting. The vulnerability can be exploited remotely.
If there is a task in the system where the student_id argument is mandatory and there is no input validation, it could be exploited
CVE-2022-36719 The Ok parameter of the Library Management System v1.0 was found to be vulnerable to SQL injection.
An attacker can inject arbitrary SQL queries that enable SQL injection and obtain access to internal database structures. Any system that uses this software, especially
CVE-2022-36716 Library Management System v1.0 had a SQL injection vulnerability with the id parameter.
A successful exploit could cause the system to crash or leak sensitive data depending on the nature of the input. This issue was resolved by
CVE-2022-37178 An issue was discovered in 72crm 9.0
A user can inject any SQL code into the view function to run arbitrary SQL code on the database. For example, a hacker can inject
CVE-2022-37181 72crm 9.0 has an Arbitrary file upload vulnerability.
An attacker can upload arbitrary file via server side request in the application. An attacker can upload payloads to the Application and can control the
Episode
00:00:00
00:00:00