Vulnerabilities > Simple Online Public Access Catalog Project
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-10-27 | CVE-2022-42991 | Cross-site Scripting vulnerability in Simple Online Public Access Catalog Project Simple Online Public Access Catalog 1.0 A stored cross-site scripting (XSS) vulnerability in Simple Online Public Access Catalog v1.0 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Edit Account Full Name field. | 5.4 |
| 2022-10-14 | CVE-2022-3495 | SQL Injection vulnerability in Simple Online Public Access Catalog Project Simple Online Public Access Catalog 1.0 A vulnerability has been found in SourceCodester Simple Online Public Access Catalog 1.0 and classified as critical. | 7.2 |