Vulnerabilities > Razormist > Medium

DATE CVE VULNERABILITY TITLE RISK
2024-11-15 CVE-2024-11261 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Razormist Student Record Management System 1.0
A vulnerability, which was classified as critical, was found in SourceCodester Student Record Management System 1.0.
local
low complexity
razormist CWE-119
6.1
6.1
2024-11-12 CVE-2024-11097 Infinite Loop vulnerability in Razormist Student Record Management System 1.0
A vulnerability has been found in SourceCodester Student Record Management System 1.0 and classified as problematic.
local
low complexity
razormist CWE-835
5.5
5.5
2024-10-22 CVE-2024-48415 Cross-site Scripting vulnerability in Razormist Loan Management System 1.0
itsourcecode Loan Management System v1.0 is vulnerable to Cross Site Scripting (XSS) via a crafted payload to the lastname, firstname, middlename, address, contact_no, email and tax_id parameters in new borrowers functionality on the Borrowers page.
local
low complexity
razormist CWE-79
5.0
5.0
2024-09-22 CVE-2024-9083 Cross-site Scripting vulnerability in Razormist Employee Management System 1.0
A vulnerability classified as problematic has been found in SourceCodester Employee Management System 1.0.
network
low complexity
razormist CWE-79
4.8
4.8
2024-02-26 CVE-2024-1871 Cross-site Scripting vulnerability in Razormist Employee Management System 1.0
A vulnerability, which was classified as problematic, was found in SourceCodester Employee Management System 1.0.
network
low complexity
razormist CWE-79
5.4
5.4
2023-03-24 CVE-2023-27242 Cross-site Scripting vulnerability in Razormist Loan Management System 1.0
SourceCodester Loan Management System v1.0 was discovered to contain a cross-site scripting (XSS) vulnerability via the Type parameter under the Edit Loan Types module.
network
low complexity
razormist CWE-79
5.4
5.4
2022-09-14 CVE-2022-37139 Cross-site Scripting vulnerability in Razormist Loan Management System 1.0
Loan Management System version 1.0 suffers from a persistent cross site scripting vulnerability.
network
low complexity
razormist CWE-79
5.4
5.4
2021-06-15 CVE-2020-29215 Cross-site Scripting vulnerability in Razormist Employee Management System 1.0
A Cross Site Scripting in SourceCodester Employee Management System 1.0 allows the user to execute alert messages via /Employee Management System/addemp.php on admin account.
network
low complexity
razormist CWE-79
5.4
5.4