Vulnerabilities > Loan Management System Project
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-10-22 | CVE-2024-48415 | Cross-site Scripting vulnerability in Loan Management System Project Loan Management System 1.0 itsourcecode Loan Management System v1.0 is vulnerable to Cross Site Scripting (XSS) via a crafted payload to the lastname, firstname, middlename, address, contact_no, email and tax_id parameters in new borrowers functionality on the Borrowers page. | 5.0 |
| 2023-03-24 | CVE-2023-27242 | Cross-site Scripting vulnerability in Loan Management System Project Loan Management System 1.0 SourceCodester Loan Management System v1.0 was discovered to contain a cross-site scripting (XSS) vulnerability via the Type parameter under the Edit Loan Types module. | 5.4 |
| 2023-01-07 | CVE-2022-2666 | SQL Injection vulnerability in Loan Management System Project Loan Management System 1.0 A vulnerability has been found in SourceCodester Loan Management System and classified as critical. | 9.8 |
| 2022-09-14 | CVE-2022-37138 | SQL Injection vulnerability in Loan Management System Project Loan Management System 1.0 Loan Management System 1.0 is vulnerable to SQL Injection at the login page, which allows unauthorized users to login as Administrator after injecting username form. | 9.8 |
| 2022-09-14 | CVE-2022-37139 | Cross-site Scripting vulnerability in Loan Management System Project Loan Management System 1.0 Loan Management System version 1.0 suffers from a persistent cross site scripting vulnerability. | 5.4 |
| 2022-08-11 | CVE-2022-2766 | SQL Injection vulnerability in Loan Management System Project Loan Management System A vulnerability was found in SourceCodester Loan Management System. | 9.8 |
| 2022-08-05 | CVE-2022-2667 | SQL Injection vulnerability in Loan Management System Project Loan Management System A vulnerability was found in SourceCodester Loan Management System and classified as critical. | 8.8 |