Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
oretnom23 expense tracker 1.0 vulnerabilities and exploits
(subscribe to this query)
5.4
CVSSv3
CVE-2023-5286
A vulnerability, which was classified as problematic, has been found in SourceCodester Expense Tracker App v1. Affected by this issue is some unknown functionality of the file add_category.php of the component Category Handler. The manipulation of the argument category_name leads...
Oretnom23 Expense Tracker 1.0
5.4
CVSSv3
CVE-2022-45033
A cross-site scripting (XSS) vulnerability in Expense Tracker 1.0 allows malicious users to execute arbitrary web scripts or HTML via a crafted payload injected into the Chat text field.
Oretnom23 Expense Tracker 1.0
5.4
CVSSv3
CVE-2023-44048
Sourcecodester Expense Tracker App v1 is vulnerable to Cross Site Scripting (XSS) via add category.
Oretnom23 Expense Tracker 1.0
1 Github repository
9.8
CVSSv3
CVE-2021-40247
SQL injection vulnerability in Sourcecodester Budget and Expense Tracker System v1 by oretnom23, allows malicious users to execute arbitrary SQL commands via the username field.
Oretnom23 Budget And Expense Tracker System 1.0
6.1
CVSSv3
CVE-2023-1688
A vulnerability classified as problematic has been found in SourceCodester Earnings and Expense Tracker App 1.0. This affects an unknown part of the file Master.php?a=save_expense. The manipulation of the argument name leads to cross site scripting. It is possible to initiate the...
Oretnom23 Earnings And Expense Tracker Application 1.0
8.8
CVSSv3
CVE-2023-2772
A vulnerability, which was classified as critical, was found in SourceCodester Budget and Expense Tracker System 1.0. Affected is an unknown function of the file /admin/budget/manage_budget.php of the component GET Parameter Handler. The manipulation of the argument id leads to s...
Oretnom23 Budget And Expense Tracker System 1.0
8.8
CVSSv3
CVE-2021-41645
Remote Code Execution (RCE) vulnerability exists in Sourcecodester Budget and Expense Tracker System 1.0 that allows a remote malicious user to inject arbitrary code via the image upload field. .
Oretnom23 Budget And Expense Tracker System 1.0
7.2
CVSSv3
CVE-2024-22628
Budget and Expense Tracker System v1.0 is vulnerable to SQL Injection via /expense_budget/admin/?page=reports/budget&date_start=2023-12-28&date_end=
Oretnom23 Budget And Expense Tracker System 1.0
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-35229
privilege escalation
local users
CVE-2024-5405
CVE-2024-27842
CVE-2024-5274
CVE-2024-5378
CVE-2024-34152
hard-coded
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started