Vulnerabilities > Oretnom23
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-10-13 | CVE-2022-3472 | SQL Injection vulnerability in Oretnom23 Human Resource Management System A vulnerability was found in SourceCodester Human Resource Management System. | 4.9 |
| 2022-10-13 | CVE-2022-3473 | SQL Injection vulnerability in Oretnom23 Human Resource Management System A vulnerability classified as critical has been found in SourceCodester Human Resource Management System. | 6.5 |
| 2022-10-12 | CVE-2022-3458 | Unrestricted Upload of File with Dangerous Type vulnerability in Oretnom23 Human Resource Management System 1.0 A vulnerability has been found in SourceCodester Human Resource Management System 1.0 and classified as critical. | 9.8 |
| 2022-10-06 | CVE-2022-42242 | SQL Injection vulnerability in Oretnom23 Simple Cold Storage Management System 1.0 Simple Cold Storage Management System v1.0 is vulnerable to SQL injection via /csms/classes/Master.php?f=delete_booking. | 7.2 |
| 2022-10-06 | CVE-2022-42243 | SQL Injection vulnerability in Oretnom23 Simple Cold Storage Management System 1.0 Simple Cold Storage Management System v1.0 is vulnerable to SQL injection via /csms/admin/storages/manage_storage.php?id=. | 7.2 |
| 2022-10-06 | CVE-2022-42249 | SQL Injection vulnerability in Oretnom23 Simple Cold Storage Management System 1.0 Simple Cold Storage Management System v1.0 is vulnerable to SQL injection via /csms/admin/storages/view_storage.php?id=. | 7.2 |
| 2022-10-06 | CVE-2022-42250 | SQL Injection vulnerability in Oretnom23 Simple Cold Storage Management System 1.0 Simple Cold Storage Management System v1.0 is vulnerable to SQL injection via /csms/admin/inquiries/view_details.php?id=. | 7.2 |
| 2022-10-06 | CVE-2022-42241 | SQL Injection vulnerability in Oretnom23 Simple Cold Storage Management System 1.0 Simple Cold Storage Management System v1.0 is vulnerable to SQL injection via /csms/classes/Master.php?f=delete_message. | 7.2 |
| 2022-09-28 | CVE-2021-41434 | Cross-site Scripting vulnerability in Oretnom23 Expense Management System 1.0 A stored Cross-Site Scripting (XSS) vulnerability exists in version 1.0 of the Expense Management System application that allows for arbitrary execution of JavaScript commands through index.php. | 5.4 |
| 2022-09-12 | CVE-2022-37796 | Cross-site Scripting vulnerability in Oretnom23 Simple Online Book Store System 1.0 In Simple Online Book Store System 1.0 in /admin_book.php the Title, Author, and Description parameters are vulnerable to Cross Site Scripting(XSS). | 5.4 |