Vulnerabilities > Oretnom23
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-12-08 | CVE-2023-6616 | Cross-site Scripting vulnerability in Oretnom23 Simple Student Attendance System 1.0 A vulnerability was found in SourceCodester Simple Student Attendance System 1.0 and classified as problematic. | 6.1 |
| 2023-12-08 | CVE-2023-6617 | SQL Injection vulnerability in Oretnom23 Simple Student Attendance System 1.0 A vulnerability was found in SourceCodester Simple Student Attendance System 1.0. | 9.8 |
| 2023-12-08 | CVE-2023-6618 | Externally Controlled Reference to a Resource in Another Sphere vulnerability in Oretnom23 Simple Student Attendance System 1.0 A vulnerability was found in SourceCodester Simple Student Attendance System 1.0. | 8.8 |
| 2023-11-30 | CVE-2023-46956 | SQL Injection vulnerability in Oretnom23 Packers and Movers Management System 1.0 SQL injection vulnerability in Packers and Movers Management System v.1.0 allows a remote attacker to execute arbitrary code via crafted payload to the /mpms/admin/?page=user/manage_user&id file. | 7.2 |
| 2023-11-03 | CVE-2023-38965 | Authorization Bypass Through User-Controlled Key vulnerability in Oretnom23 Lost and Found Information System 1.0 Lost and Found Information System 1.0 allows account takeover via username and password to a /classes/Users.php?f=save URI. | 9.8 |
| 2023-10-27 | CVE-2023-5813 | SQL Injection vulnerability in Oretnom23 Task Reminder System 1.0 A vulnerability was found in SourceCodester Task Reminder System 1.0 and classified as critical. | 8.8 |
| 2023-10-27 | CVE-2023-5814 | SQL Injection vulnerability in Oretnom23 Task Reminder System 1.0 A vulnerability was found in SourceCodester Task Reminder System 1.0. | 8.8 |
| 2023-10-26 | CVE-2023-46435 | SQL Injection vulnerability in Oretnom23 Packers and Movers Management System 1.0 Sourcecodester Packers and Movers Management System v1.0 is vulnerable to SQL Injection via mpms/?p=services/view_service&id. | 9.8 |
| 2023-10-17 | CVE-2023-44824 | Unrestricted Upload of File with Dangerous Type vulnerability in Oretnom23 Expense Management System 1.0 An issue in Expense Management System v.1.0 allows a local attacker to execute arbitrary code via a crafted file uploaded to the sign-up.php component. | 7.8 |
| 2023-10-15 | CVE-2023-5585 | Cross-site Scripting vulnerability in Oretnom23 Online Motorcycle (Bike) Rental System 1.0 A vulnerability was found in SourceCodester Online Motorcycle Rental System 1.0. | 6.1 |