Shodan
Vulnerabilities
Vulnerable Software
Oretnom23:  Security Vulnerabilities
CVE-2023-23019
Cross site scripting (XSS) vulnerability in file main.php in sourcecodester oretnom23 Blog Site 1.0 via the name and email parameters to function user_add.\
CVSS Score
5.4
EPSS Score
0.002
Published
2024-05-01
CVE-2024-33247
Sourcecodester Employee Task Management System v1.0 is vulnerable to SQL Injection via admin-manage-user.php.
CVSS Score
8.8
EPSS Score
0.001
Published
2024-04-25
CVE-2024-4093
A vulnerability, which was classified as critical, was found in SourceCodester Simple Subscription Website 1.0. Affected is an unknown function of the file view_application.php. The manipulation of the argument id leads to sql injection. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used. VDB-261822 is the identifier assigned to this vulnerability.
CVSS Score
6.3
EPSS Score
0.001
Published
2024-04-24
CVE-2024-31545
Computer Laboratory Management System v1.0 is vulnerable to SQL Injection via the "id" parameter of /admin/?page=user/manage_user&id=6.
CVSS Score
9.4
EPSS Score
0.001
Published
2024-04-22
CVE-2024-31546
Computer Laboratory Management System v1.0 is vulnerable to SQL Injection via the "id" parameter of /admin/damage/view_damage.php.
CVSS Score
9.8
EPSS Score
0.001
Published
2024-04-19
CVE-2024-31547
Computer Laboratory Management System v1.0 is vulnerable to SQL Injection via the "id" parameter of /admin/item/view_item.php.
CVSS Score
9.1
EPSS Score
0.001
Published
2024-04-19
CVE-2024-31651
A cross-site scripting (XSS) in Cosmetics and Beauty Product Online Store v1.0 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the First Name parameter.
CVSS Score
6.1
EPSS Score
0.001
Published
2024-04-15
CVE-2024-31649
A cross-site scripting (XSS) in Cosmetics and Beauty Product Online Store v1.0 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Product Name parameter.
CVSS Score
5.4
EPSS Score
0.001
Published
2024-04-15
CVE-2024-31650
A cross-site scripting (XSS) in Cosmetics and Beauty Product Online Store v1.0 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Last Name parameter.
CVSS Score
9.6
EPSS Score
0.002
Published
2024-04-15
CVE-2024-31652
A cross-site scripting (XSS) in Cosmetics and Beauty Product Online Store v1.0 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Search parameter.
CVSS Score
6.1
EPSS Score
0.001
Published
2024-04-15


Products
Pricing
Contact Us

Shodan ® - All rights reserved