Vulnerabilities > Razormist
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-06-07 | CVE-2023-3144 | Cross-site Scripting vulnerability in Razormist Online Discussion Forum Site 1.0 A vulnerability classified as problematic was found in SourceCodester Online Discussion Forum Site 1.0. | 5.4 |
| 2023-06-07 | CVE-2023-3145 | SQL Injection vulnerability in Razormist Online Discussion Forum Site 1.0 A vulnerability, which was classified as critical, has been found in SourceCodester Online Discussion Forum Site 1.0. | 8.8 |
| 2023-03-24 | CVE-2023-27242 | Cross-site Scripting vulnerability in Razormist Loan Management System 1.0 SourceCodester Loan Management System v1.0 was discovered to contain a cross-site scripting (XSS) vulnerability via the Type parameter under the Edit Loan Types module. | 5.4 |
| 2023-01-07 | CVE-2022-2666 | Unspecified vulnerability in Razormist Loan Management System 1.0 A vulnerability has been found in SourceCodester Loan Management System and classified as critical. | 9.8 |
| 2022-09-14 | CVE-2022-37138 | SQL Injection vulnerability in Razormist Loan Management System 1.0 Loan Management System 1.0 is vulnerable to SQL Injection at the login page, which allows unauthorized users to login as Administrator after injecting username form. | 9.8 |
| 2022-09-14 | CVE-2022-37139 | Cross-site Scripting vulnerability in Razormist Loan Management System 1.0 Loan Management System version 1.0 suffers from a persistent cross site scripting vulnerability. | 5.4 |
| 2022-08-11 | CVE-2022-2766 | Unspecified vulnerability in Razormist Loan Management System A vulnerability was found in SourceCodester Loan Management System. | 9.8 |
| 2022-08-05 | CVE-2022-2667 | Unspecified vulnerability in Razormist Loan Management System A vulnerability was found in SourceCodester Loan Management System and classified as critical. | 8.8 |
| 2022-06-16 | CVE-2022-31295 | Authorization Bypass Through User-Controlled Key vulnerability in Razormist Online Discussion Forum Site 1.0 An issue in the delete_post() function of Online Discussion Forum Site 1 allows unauthenticated attackers to arbitrarily delete posts. | 7.5 |
| 2022-06-16 | CVE-2022-31294 | Cross-Site Request Forgery (CSRF) vulnerability in Razormist Online Discussion Forum Site 1.0 An issue in the save_users() function of Online Discussion Forum Site 1 allows unauthenticated attackers to arbitrarily create or update user accounts. | 6.5 |