MidnightBSD

Advisories for raffle_draw_system_project

CVE-2023-24198

Raffle Draw System v1.0 was discovered to contain multiple SQL injection vulnerabilities at save_winner.php via the ticket_id and draw parameters.

Products Affected

Vendor Product Version
raffle_draw_system_project raffle_draw_system 1.0
CVE-2023-24199

Raffle Draw System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at delete_ticket.php.

Products Affected

Vendor Product Version
raffle_draw_system_project raffle_draw_system 1.0
CVE-2023-24200

Raffle Draw System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at save_ticket.php.

Products Affected

Vendor Product Version
raffle_draw_system_project raffle_draw_system 1.0
CVE-2023-24201

Raffle Draw System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at get_ticket.php.

Products Affected

Vendor Product Version
raffle_draw_system_project raffle_draw_system 1.0
CVE-2023-24202

Raffle Draw System v1.0 was discovered to contain a local file inclusion vulnerability via the page parameter in index.php.

Products Affected

Vendor Product Version
raffle_draw_system_project raffle_draw_system 1.0