Vulnerabilities > Oretnom23 > Service Provider Management System > 1.0
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-09-25 | CVE-2023-43457 | Unspecified vulnerability in Oretnom23 Service Provider Management System 1.0 An issue in Service Provider Management System v.1.0 allows a remote attacker to gain privileges via the ID parameter in the /php-spms/admin/?page=user/ endpoint. | 9.8 |
| 2023-09-25 | CVE-2023-43456 | Cross-site Scripting vulnerability in Oretnom23 Service Provider Management System 1.0 Cross Site Scripting vulnerability in Service Provider Management System v.1.0 allows a remote attacker to execute arbitrary code and obtain sensitive information via the firstname, middlename and lastname parameters in the /php-spms/admin/?page=user endpoint. | 5.4 |
| 2023-07-12 | CVE-2023-3644 | SQL Injection vulnerability in Oretnom23 Service Provider Management System 1.0 A vulnerability was found in SourceCodester Service Provider Management System 1.0. | 9.8 |
| 2023-06-12 | CVE-2023-34581 | SQL Injection vulnerability in Oretnom23 Service Provider Management System 1.0 Sourcecodester Service Provider Management System v1.0 is vulnerable to SQL Injection via the ID parameter in /php-spms/?page=services/view&id=2 | 9.8 |
| 2023-06-06 | CVE-2023-3119 | SQL Injection vulnerability in Oretnom23 Service Provider Management System 1.0 A vulnerability, which was classified as critical, has been found in SourceCodester Service Provider Management System 1.0. | 8.8 |
| 2023-06-06 | CVE-2023-3120 | SQL Injection vulnerability in Oretnom23 Service Provider Management System 1.0 A vulnerability, which was classified as critical, was found in SourceCodester Service Provider Management System 1.0. | 7.2 |
| 2023-05-17 | CVE-2023-2769 | SQL Injection vulnerability in Oretnom23 Service Provider Management System 1.0 A vulnerability classified as critical has been found in SourceCodester Service Provider Management System 1.0. | 8.8 |
| 2023-04-27 | CVE-2023-2349 | Cross-site Scripting vulnerability in Oretnom23 Service Provider Management System 1.0 A vulnerability classified as problematic has been found in SourceCodester Service Provider Management System 1.0. | 5.4 |
| 2023-04-27 | CVE-2023-2350 | Cross-site Scripting vulnerability in Oretnom23 Service Provider Management System 1.0 A vulnerability classified as problematic was found in SourceCodester Service Provider Management System 1.0. | 5.4 |
| 2023-04-27 | CVE-2023-2345 | Improper Authorization vulnerability in Oretnom23 Service Provider Management System 1.0 A vulnerability was found in SourceCodester Service Provider Management System 1.0 and classified as critical. | 9.8 |