shubham-s-pandey/CVE_POC

Releases0

Stars1

CVE History

CVE	Published	CVSS v3	CVSS v2
CVE-2024-28595 ↗	Mar 19, 2024Tuesday, 19 March 2024, 20:15	9.8 CRITICAL	—
SQL Injection vulnerability in Employee Management System v1.0 allows attackers to run arbitrary SQL commands via the admin_id parameter in update-admin.php.
CVE-2024-27743 ↗	Mar 1, 2024Friday, 1 March 2024, 22:15	6.1 MEDIUM	—
Cross Site Scripting vulnerability in Petrol Pump Mangement Software v.1.0 allows an attacker to execute arbitrary code via a crafted payload to the Address parameter in the add_invoices.php component.
CVE-2024-27744 ↗	Mar 1, 2024Friday, 1 March 2024, 22:15	6.1 MEDIUM	—
Cross Site Scripting vulnerability in Petrol Pump Mangement Software v.1.0 allows an attacker to execute arbitrary code via a crafted payload to the image parameter in the profile.php component.
CVE-2024-27746 ↗	Mar 1, 2024Friday, 1 March 2024, 22:15	9.8 CRITICAL	—
SQL Injection vulnerability in Petrol Pump Mangement Software v.1.0 allows an attacker to execute arbitrary code via a crafted payload to the email address parameter in the index.php component.
CVE-2024-27747 ↗	Mar 1, 2024Friday, 1 March 2024, 22:15	9.8 CRITICAL	—
File Upload vulnerability in Petrol Pump Mangement Software v.1.0 allows an attacker to execute arbitrary code via a crafted payload to the email Image parameter in the profile.php component.