0Xdeku

**Name of the Vulnerable Software and Affected Versions** Sourcecodester Engineers Online Portal (affected versions not specified) **Description** A SQL Injection issue exists in the Sourcecodester Engineers Online Portal in PHP, specifically via the `id` parameter in the "my classmates.php" web page. This allows an attacker to extract sensitive data from the web server and potentially achieve remote code execution on the remote web server. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Sourcecodester Engineers Online Portal (affected versions not specified) **Description** A file upload issue exists, allowing attackers to change the avatar through `teacher avatar.php` in `dashboard teacher.php`. Uploaded files are stored in the `/admin/uploads/` directory and are accessible to all users. An attacker can upload a PHP webshell containing `<?php system($ GET["cmd"]); ?>` and execute commands on the web server by accessing the uploaded file, for example, `/admin/uploads/php-webshell?cmd=id`. This allows for command execution with potentially elevated privileges. **Recommendations** As a temporary workaround, consider disabling the `teacher avatar.php` functionality until a patch is available. Restrict access to the `/admin/uploads/` directory to minimize the risk of exploitation. Avoid using the `cmd` parameter in the affected API endpoint until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Sourcecodester Engineers Online Portal (affected versions not specified) **Description** An incorrect access control issue exists in the Sourcecodester Engineers Online Portal in PHP, specifically in the nia munoz monitoring system/admin/uploads directory. This allows an attacker to bypass access controls and access all files uploaded to the web server without needing authentication or authorization. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Sourcecodester Online Event Booking and Reservation System (affected versions not specified) **Description** The issue exists due to the lack of measures to neutralize special elements, allowing a remote attacker to exploit it and potentially disclose protected information. An HTML injection vulnerability is present in the system via the `msg` parameter to "/event-management/index.php". This vulnerability can be leveraged by an attacker to change the visibility of the website. Once a target user clicks on a given link, they will display the content of the attacker's chosen HTML code. **Recommendations** As a temporary workaround, consider restricting access to the `/event-management/index.php` endpoint until a patch is available. Avoid using the `msg` parameter in the affected API endpoint until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Sourcecodester Online Event Booking and Reservation System (affected versions not specified) **Description** A Stored Cross Site Scripting (XSS) issue exists due to inadequate protection of the web page structure. This allows a remote attacker to run javascript commands on behalf of the web server user, potentially leading to cookie stealing and other malicious activities. The vulnerability is specifically related to the `Holiday reason` parameter. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.