Vulnerabilities > Simple Bakery Shop Management System Project > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-06-23 | CVE-2022-32987 | Cross-site Scripting vulnerability in Simple Bakery Shop Management System Project Simple Bakery Shop Management System 1.0 Multiple cross-site scripting (XSS) vulnerabilities in /bsms/?page=manage_account of Simple Bakery Shop Management System v1.0 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Username or Full Name fields. | 4.8 |
| 2022-04-04 | CVE-2022-28063 | Unspecified vulnerability in Simple Bakery Shop Management System Project Simple Bakery Shop Management System 1.0 Simple Bakery Shop Management System v1.0 contains a file disclosure via /bsms/?page=products. | 4.9 |