Vulnerabilities > Oretnom23 > Toll TAX Management System

DATE CVE VULNERABILITY TITLE RISK
2024-11-08 CVE-2024-51032 Cross-site Scripting vulnerability in Oretnom23 Toll TAX Management System 1.0
A Cross-site Scripting (XSS) vulnerability in manage_recipient.php of Sourcecodester Toll Tax Management System 1.0 allows remote authenticated users to inject arbitrary web scripts via the "owner" input field.
network
low complexity
oretnom23 CWE-79
5.4
5.4
2023-09-27 CVE-2023-44047 SQL Injection vulnerability in Oretnom23 Toll TAX Management System 1.0
Sourcecodester Toll Tax Management System v1 is vulnerable to SQL Injection.
network
low complexity
oretnom23 CWE-89
7.2
7.2
2023-08-04 CVE-2023-36158 Cross-site Scripting vulnerability in Oretnom23 Toll TAX Management System 1.0
Cross Site Scripting (XSS) vulnerability in sourcecodester Toll Tax Management System 1.0 allows remote attackers to run arbitrary code via the First Name and Last Name fields on the My Account page.
network
low complexity
oretnom23 CWE-79
6.1
6.1
2022-05-24 CVE-2022-30837 Cross-site Scripting vulnerability in Oretnom23 Toll TAX Management System 1.0
Toll-tax-management-system v1.0 is vulnerable to Cross Site Scripting (XSS) via /ttms/classes/Master.php?f=save_recipient, vehicle_name.
network
low complexity
oretnom23 CWE-79
5.4
5.4
2022-05-17 CVE-2022-30053 SQL Injection vulnerability in Oretnom23 Toll TAX Management System 1.0
In Toll Tax Management System 1.0, the id parameter appears to be vulnerable to SQL injection attacks.
network
low complexity
oretnom23 CWE-89
critical
 9.8
9.8