Vulnerabilities > Oretnom23

DATE CVE VULNERABILITY TITLE RISK
2023-10-15 CVE-2023-5585 Unspecified vulnerability in Oretnom23 Online Motorcycle (Bike) Rental System 1.0
A vulnerability was found in SourceCodester Online Motorcycle Rental System 1.0.
network
low complexity
oretnom23
6.1
2023-10-14 CVE-2023-5581 Unspecified vulnerability in Oretnom23 Medicine Tracker System 1.0
A vulnerability classified as problematic was found in SourceCodester Medicine Tracker System 1.0.
network
low complexity
oretnom23
6.1
2023-10-05 CVE-2023-5423 Unspecified vulnerability in Oretnom23 Online Pizza Ordering System 1.0
A vulnerability has been found in SourceCodester Online Pizza Ordering System 1.0 and classified as critical.
network
low complexity
oretnom23
critical
9.8
2023-10-04 CVE-2023-5374 Unspecified vulnerability in Oretnom23 Online Computer and Laptop Store 1.0
A vulnerability classified as critical was found in SourceCodester Online Computer and Laptop Store 1.0.
network
low complexity
oretnom23
critical
9.8
2023-10-04 CVE-2023-5373 SQL Injection vulnerability in Oretnom23 Online Computer and Laptop Store 1.0
A vulnerability classified as critical has been found in SourceCodester Online Computer and Laptop Store 1.0.
network
low complexity
oretnom23 CWE-89
critical
9.8
2023-09-29 CVE-2023-5286 Unspecified vulnerability in Oretnom23 Expense Tracker 1.0
A vulnerability, which was classified as problematic, has been found in SourceCodester Expense Tracker App v1.
network
low complexity
oretnom23
5.4
2023-09-28 CVE-2023-30415 SQL Injection vulnerability in Oretnom23 Packers and Movers Management System 1.0
Sourcecodester Packers and Movers Management System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /inquiries/view_inquiry.php.
network
low complexity
oretnom23 CWE-89
critical
9.8
2023-09-27 CVE-2023-44048 Cross-site Scripting vulnerability in Oretnom23 Expense Tracker 1.0
Sourcecodester Expense Tracker App v1 is vulnerable to Cross Site Scripting (XSS) via add category.
network
low complexity
oretnom23 CWE-79
5.4
2023-09-25 CVE-2023-43457 Unspecified vulnerability in Oretnom23 Service Provider Management System 1.0
An issue in Service Provider Management System v.1.0 allows a remote attacker to gain privileges via the ID parameter in the /php-spms/admin/?page=user/ endpoint.
network
low complexity
oretnom23
critical
9.8
2023-09-25 CVE-2023-43456 Cross-site Scripting vulnerability in Oretnom23 Service Provider Management System 1.0
Cross Site Scripting vulnerability in Service Provider Management System v.1.0 allows a remote attacker to execute arbitrary code and obtain sensitive information via the firstname, middlename and lastname parameters in the /php-spms/admin/?page=user endpoint.
network
low complexity
oretnom23 CWE-79
5.4