Vulnerabilities > Simple Online Public Access Catalog Project

DATE CVE VULNERABILITY TITLE RISK
2022-10-27 CVE-2022-42991 Cross-site Scripting vulnerability in Simple Online Public Access Catalog Project Simple Online Public Access Catalog 1.0
A stored cross-site scripting (XSS) vulnerability in Simple Online Public Access Catalog v1.0 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Edit Account Full Name field.
5.4
2022-10-14 CVE-2022-3495 SQL Injection vulnerability in Simple Online Public Access Catalog Project Simple Online Public Access Catalog 1.0
A vulnerability has been found in SourceCodester Simple Online Public Access Catalog 1.0 and classified as critical.
7.2