Vulnerabilities > Oretnom23
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2023-10-15 | CVE-2023-5585 | Unspecified vulnerability in Oretnom23 Online Motorcycle (Bike) Rental System 1.0 A vulnerability was found in SourceCodester Online Motorcycle Rental System 1.0. | 6.1 |
2023-10-14 | CVE-2023-5581 | Unspecified vulnerability in Oretnom23 Medicine Tracker System 1.0 A vulnerability classified as problematic was found in SourceCodester Medicine Tracker System 1.0. | 6.1 |
2023-10-05 | CVE-2023-5423 | Unspecified vulnerability in Oretnom23 Online Pizza Ordering System 1.0 A vulnerability has been found in SourceCodester Online Pizza Ordering System 1.0 and classified as critical. | 9.8 |
2023-10-04 | CVE-2023-5374 | Unspecified vulnerability in Oretnom23 Online Computer and Laptop Store 1.0 A vulnerability classified as critical was found in SourceCodester Online Computer and Laptop Store 1.0. | 9.8 |
2023-10-04 | CVE-2023-5373 | SQL Injection vulnerability in Oretnom23 Online Computer and Laptop Store 1.0 A vulnerability classified as critical has been found in SourceCodester Online Computer and Laptop Store 1.0. | 9.8 |
2023-09-29 | CVE-2023-5286 | Unspecified vulnerability in Oretnom23 Expense Tracker 1.0 A vulnerability, which was classified as problematic, has been found in SourceCodester Expense Tracker App v1. | 5.4 |
2023-09-28 | CVE-2023-30415 | SQL Injection vulnerability in Oretnom23 Packers and Movers Management System 1.0 Sourcecodester Packers and Movers Management System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /inquiries/view_inquiry.php. | 9.8 |
2023-09-27 | CVE-2023-44048 | Cross-site Scripting vulnerability in Oretnom23 Expense Tracker 1.0 Sourcecodester Expense Tracker App v1 is vulnerable to Cross Site Scripting (XSS) via add category. | 5.4 |
2023-09-25 | CVE-2023-43457 | Unspecified vulnerability in Oretnom23 Service Provider Management System 1.0 An issue in Service Provider Management System v.1.0 allows a remote attacker to gain privileges via the ID parameter in the /php-spms/admin/?page=user/ endpoint. | 9.8 |
2023-09-25 | CVE-2023-43456 | Cross-site Scripting vulnerability in Oretnom23 Service Provider Management System 1.0 Cross Site Scripting vulnerability in Service Provider Management System v.1.0 allows a remote attacker to execute arbitrary code and obtain sensitive information via the firstname, middlename and lastname parameters in the /php-spms/admin/?page=user endpoint. | 5.4 |