Vulnerabilities > Oretnom23 > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-04-08 | CVE-2024-3463 | Unspecified vulnerability in Oretnom23 Laundry Shop Management System 1.0 A vulnerability has been found in SourceCodester Laundry Management System 1.0 and classified as problematic. | 5.4 |
| 2024-04-06 | CVE-2024-3377 | Unspecified vulnerability in Oretnom23 Computer Laboratory Management System 1.0 A vulnerability classified as problematic was found in SourceCodester Computer Laboratory Management System 1.0. | 6.1 |
| 2024-04-05 | CVE-2024-3321 | Unspecified vulnerability in Oretnom23 Elearning System 1.0 A vulnerability classified as problematic has been found in SourceCodester eLearning System 1.0. | 4.8 |
| 2024-04-05 | CVE-2024-3320 | Unspecified vulnerability in Oretnom23 Elearning System 1.0 A vulnerability was found in SourceCodester eLearning System 1.0. | 6.1 |
| 2024-04-01 | CVE-2024-3139 | Authorization Bypass Through User-Controlled Key vulnerability in Oretnom23 Computer Laboratory Management System 1.0 A vulnerability, which was classified as critical, has been found in SourceCodester Computer Laboratory Management System 1.0. | 5.4 |
| 2024-04-01 | CVE-2024-3140 | Unspecified vulnerability in Oretnom23 Computer Laboratory Management System 1.0 A vulnerability, which was classified as problematic, was found in SourceCodester Computer Laboratory Management System 1.0. | 5.4 |
| 2024-04-01 | CVE-2024-3131 | Unspecified vulnerability in Oretnom23 Computer Laboratory Management System 1.0 A vulnerability was found in SourceCodester Computer Laboratory Management System 1.0. | 6.5 |
| 2024-03-06 | CVE-2023-49971 | Cross-site Scripting vulnerability in Oretnom23 Customer Support System 1.0 A cross-site scripting (XSS) vulnerability in Customer Support System v1 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the firstname parameter at /customer_support/index.php?page=customer_list. | 6.1 |
| 2024-03-06 | CVE-2023-49973 | Cross-site Scripting vulnerability in Oretnom23 Customer Support System 1.0 A cross-site scripting (XSS) vulnerability in Customer Support System v1 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the email parameter at /customer_support/index.php?page=customer_list. | 6.1 |
| 2024-03-05 | CVE-2022-46088 | Cross-site Scripting vulnerability in Oretnom23 Online Flight Booking Management System 1.0 Online Flight Booking Management System v1.0 was discovered to contain a cross-site scripting (XSS) vulnerability via the feedback form. | 6.1 |