Vulnerabilities > Kashipara > Critical

DATE CVE VULNERABILITY TITLE RISK
2024-01-04 CVE-2023-49658 SQL Injection vulnerability in Kashipara Billing Software 1.0
Billing Software v1.0 is vulnerable to multiple Unauthenticated SQL Injection vulnerabilities.
network
low complexity
kashipara CWE-89
critical
 9.8
9.8
2024-01-04 CVE-2023-49665 SQL Injection vulnerability in Kashipara Billing Software 1.0
Billing Software v1.0 is vulnerable to multiple Unauthenticated SQL Injection vulnerabilities.
network
low complexity
kashipara CWE-89
critical
 9.8
9.8
2024-01-04 CVE-2023-49666 SQL Injection vulnerability in Kashipara Billing System 1.0
Billing Software v1.0 is vulnerable to multiple Unauthenticated SQL Injection vulnerabilities.
network
low complexity
kashipara CWE-89
critical
 9.8
9.8
2024-01-04 CVE-2023-50743 SQL Injection vulnerability in Kashipara Online Notice Board System 1.0
Online Notice Board System v1.0 is vulnerable to multiple Unauthenticated SQL Injection vulnerabilities.
network
low complexity
kashipara CWE-89
critical
 9.8
9.8
2024-01-04 CVE-2023-50752 SQL Injection vulnerability in Kashipara Online Notice Board System 1.0
Online Notice Board System v1.0 is vulnerable to multiple Unauthenticated SQL Injection vulnerabilities.
network
low complexity
kashipara CWE-89
critical
 9.8
9.8
2024-01-04 CVE-2023-50753 SQL Injection vulnerability in Kashipara Online Notice Board System 1.0
Online Notice Board System v1.0 is vulnerable to multiple Unauthenticated SQL Injection vulnerabilities.
network
low complexity
kashipara CWE-89
critical
 9.8
9.8
2023-12-22 CVE-2023-49688 SQL Injection vulnerability in Kashipara JOB Portal 1.0
Job Portal v1.0 is vulnerable to multiple Unauthenticated SQL Injection vulnerabilities. The 'txtUser' parameter of the login.php resource does not validate the characters received and they are sent unfiltered to the database.
network
low complexity
kashipara CWE-89
critical
 9.8
9.8
2023-12-22 CVE-2023-49689 SQL Injection vulnerability in Kashipara JOB Portal 1.0
Job Portal v1.0 is vulnerable to multiple Unauthenticated SQL Injection vulnerabilities. The 'JobId' parameter of the Employer/DeleteJob.php resource does not validate the characters received and they are sent unfiltered to the database.
network
low complexity
kashipara CWE-89
critical
 9.8
9.8
2023-12-21 CVE-2023-49677 SQL Injection vulnerability in Kashipara JOB Portal 1.0
Job Portal v1.0 is vulnerable to multiple Unauthenticated SQL Injection vulnerabilities. The 'cmbQual' parameter of the Employer/InsertJob.php resource does not validate the characters received and they are sent unfiltered to the database.
network
low complexity
kashipara CWE-89
critical
 9.8
9.8
2023-12-21 CVE-2023-49681 SQL Injection vulnerability in Kashipara JOB Portal 1.0
Job Portal v1.0 is vulnerable to multiple Unauthenticated SQL Injection vulnerabilities. The 'cmbQual' parameter of the Employer/InsertWalkin.php resource does not validate the characters received and they are sent unfiltered to the database.
network
low complexity
kashipara CWE-89
critical
 9.8
9.8