Sourcecodester Advocate Office Management System vulnerabilities

4 known vulnerabilities affecting sourcecodester/advocate_office_management_system.

Total CVEs
4
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
MEDIUM4

Vulnerabilities

Page 1 of 1
CVE-2024-9328MEDIUMCVSS 5.3v1.02024-09-29
CVE-2024-9328 [MEDIUM] CWE-89 CVE-2024-9328: A vulnerability was found in SourceCodester Advocate Office Management System 1.0. It has been rated A vulnerability was found in SourceCodester Advocate Office Management System 1.0. It has been rated as critical. This issue affects some unknown processing of the file /control/edit_client.php. The manipulation of the argument id leads to sql injection. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used.
cvelistv5nvd
CVE-2024-9296MEDIUMCVSS 6.9v1.02024-09-28
CVE-2024-9296 [MEDIUM] CWE-89 CVE-2024-9296: A vulnerability was found in SourceCodester Advocate Office Management System 1.0. It has been class A vulnerability was found in SourceCodester Advocate Office Management System 1.0. It has been classified as critical. Affected is an unknown function of the file /control/forgot_pass.php. The manipulation of the argument username leads to sql injection. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may
cvelistv5nvd
CVE-2024-9318MEDIUMCVSS 5.3v1.02024-09-28
CVE-2024-9318 [MEDIUM] CWE-89 CVE-2024-9318: A vulnerability, which was classified as critical, has been found in SourceCodester Advocate Office A vulnerability, which was classified as critical, has been found in SourceCodester Advocate Office Management System 1.0. Affected by this issue is some unknown functionality of the file /control/activate.php. The manipulation of the argument id leads to sql injection. The attack may be launched remotely. The exploit has been disclosed to the public an
cvelistv5nvd
CVE-2024-9295MEDIUMCVSS 6.9v1.02024-09-28
CVE-2024-9295 [MEDIUM] CWE-89 CVE-2024-9295: A vulnerability was found in SourceCodester Advocate Office Management System 1.0 and classified as A vulnerability was found in SourceCodester Advocate Office Management System 1.0 and classified as critical. This issue affects some unknown processing of the file /control/login.php. The manipulation of the argument username leads to sql injection. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used.
cvelistv5nvd