Filtered by vendor Remyandrade
Subscribe
Total
27 CVE
CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
---|---|---|---|---|---|
CVE-2024-24945 | 1 Remyandrade | 1 Travel Journal Using Php And Mysql With Source Code | 2024-02-28 | N/A | 6.1 MEDIUM |
A stored cross-site scripting (XSS) vulnerability in Travel Journal Using PHP and MySQL with Source Code v1.0 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Share Your Moments parameter at /travel-journal/write-journal.php. | |||||
CVE-2024-24041 | 1 Remyandrade | 1 Travel Journal Using Php And Mysql With Source Code | 2024-02-28 | N/A | 6.1 MEDIUM |
A stored cross-site scripting (XSS) vulnerability in Travel Journal Using PHP and MySQL with Source Code v1.0 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the location parameter at /travel-journal/write-journal.php. | |||||
CVE-2023-47014 | 1 Remyandrade | 1 Sticky Notes App | 2024-02-28 | N/A | 6.5 MEDIUM |
A Cross-Site Request Forgery (CSRF) vulnerability in Sourcecodester Sticky Notes App Using PHP with Source Code v.1.0 allows a local attacker to obtain sensitive information via a crafted payload to add-note.php. | |||||
CVE-2024-24140 | 1 Remyandrade | 1 Daily Habit Tracker | 2024-02-28 | N/A | 7.2 HIGH |
Sourcecodester Daily Habit Tracker App 1.0 allows SQL Injection via the parameter 'tracker.' | |||||
CVE-2024-24495 | 1 Remyandrade | 1 Daily Habit Tracker | 2024-02-28 | N/A | 9.8 CRITICAL |
SQL Injection vulnerability in delete-tracker.php in Daily Habit Tracker v.1.0 allows a remote attacker to execute arbitrary code via crafted GET request. | |||||
CVE-2024-25302 | 1 Remyandrade | 1 Event Student Attendance System | 2024-02-28 | N/A | 9.8 CRITICAL |
Sourcecodester Event Student Attendance System 1.0, allows SQL Injection via the 'student' parameter. | |||||
CVE-2024-24135 | 1 Remyandrade | 1 Product Inventory With Export To Excel | 2024-02-28 | N/A | 6.1 MEDIUM |
Product Name and Product Code in the 'Add Product' section of Sourcecodester Product Inventory with Export to Excel 1.0 are vulnerable to XSS attacks. |