Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
sourcecodester vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2024-31678
Sourcecodester Loan Management System v1.0 is vulnerable to SQL Injection via the "password" parameter in the "login.php" file.
7.2
CVSSv3
CVE-2022-30378
Sourcecodester Simple Social Networking Site v1.0 is vulnerable to SQL Injection via /sns/admin/?page=posts/view_post&id=.
Simple Social Networking Site Project Simple Social Networking Site 1.0
9.8
CVSSv3
CVE-2021-43506
An SQL Injection vulnerability exists in Sourcecodester Simple Client Management System 1.0 via the password parameter in Login.php.
Simple Client Management System Project Simple Client Management System 1.0
9.8
CVSSv3
CVE-2023-46435
Sourcecodester Packers and Movers Management System v1.0 is vulnerable to SQL Injection via mpms/?p=services/view_service&id.
Oretnom23 Packers And Movers Management System 1.0
9.8
CVSSv3
CVE-2021-43509
SQL Injection vulnerability exists in Sourcecodester Simple Client Management System 1.0 via the id parameter in view-service.php.
Simple Client Management System Project Simple Client Management System 1.0
1 Github repository
NA
CVE-2024-33303
SourceCodester Product Show Room 1.0 is vulnerable to Cross Site Scripting (XSS) via "First Name" under Add Users.
NA
CVE-2024-33304
SourceCodester Product Show Room 1.0 is vulnerable to Cross Site Scripting (XSS) via "Last Name" under Add Users.
9.8
CVSSv3
CVE-2023-31752
SourceCodester Employee and Visitor Gate Pass Logging System v1.0 is vulnerable to SQL Injection via /employee_gatepass/classes/Login.php.
Employee And Visitor Gate Pass Logging System Project Employee And Visitor Gate Pass Logging System 1.0
6.1
CVSSv3
CVE-2021-43141
Cross Site Scripting (XSS) vulnerability exists in Sourcecodester Simple Subscription Website 1.0 via the id parameter in plan_application.
Simple Subscription Website Project Simple Subscription Website 1.0
9.8
CVSSv3
CVE-2021-41674
An SQL Injection vulnerability exists in Sourcecodester E-Negosyo System 1.0 via the user_email parameter in /admin/login.php.
E-negosyo System Project E-negosyo System 1.0
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
path traversal
CVE-2024-33545
CVE-2024-35725
CVE-2024-32704
overflow
file upload
CVE-2024-0230
CVE-2024-32705
CVE-2024-23692
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
2
3
4
5
6
7
8
9
10
NEXT »