Vulnerabilities > Razormist > Loan Management System > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-10-22 | CVE-2024-48415 | Cross-site Scripting vulnerability in Razormist Loan Management System 1.0 itsourcecode Loan Management System v1.0 is vulnerable to Cross Site Scripting (XSS) via a crafted payload to the lastname, firstname, middlename, address, contact_no, email and tax_id parameters in new borrowers functionality on the Borrowers page. | 5.0 |
| 2023-03-24 | CVE-2023-27242 | Cross-site Scripting vulnerability in Razormist Loan Management System 1.0 SourceCodester Loan Management System v1.0 was discovered to contain a cross-site scripting (XSS) vulnerability via the Type parameter under the Edit Loan Types module. | 5.4 |
| 2022-09-14 | CVE-2022-37139 | Cross-site Scripting vulnerability in Razormist Loan Management System 1.0 Loan Management System version 1.0 suffers from a persistent cross site scripting vulnerability. | 5.4 |