Shodan
Vulnerabilities
Vulnerable Software
Code-Projects:  Security Vulnerabilities
CVE-2024-25218
A cross-site scripting (XSS) vulnerability in Task Manager App v1.0 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Project Name parameter /TaskManager/Projects.php.
CVSS Score
6.1
EPSS Score
0.004
Published
2024-02-14
CVE-2024-25219
A cross-site scripting (XSS) vulnerability in Task Manager App v1.0 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Task Name parameter /TaskManager/Task.php.
CVSS Score
6.1
EPSS Score
0.005
Published
2024-02-14
CVE-2024-25220
Task Manager App v1.0 was discovered to contain a SQL injection vulnerability via the taskID parameter at /TaskManager/EditTask.php.
CVSS Score
9.8
EPSS Score
0.007
Published
2024-02-14
CVE-2024-25221
A cross-site scripting (XSS) vulnerability in Task Manager App v1.0 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Note Section parameter at /TaskManager/Tasks.php.
CVSS Score
6.1
EPSS Score
0.004
Published
2024-02-14
CVE-2024-25222
Task Manager App v1.0 was discovered to contain a SQL injection vulnerability via the projectID parameter at /TaskManager/EditProject.php.
CVSS Score
9.8
EPSS Score
0.007
Published
2024-02-14
CVE-2024-25223
Simple Admin Panel App v1.0 was discovered to contain a SQL injection vulnerability via the orderID parameter at /adminView/viewEachOrder.php.
CVSS Score
9.8
EPSS Score
0.006
Published
2024-02-14
CVE-2024-25224
A cross-site scripting (XSS) vulnerability in Simple Admin Panel App v1.0 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Size Number parameter under the Add Size function.
CVSS Score
5.4
EPSS Score
0.004
Published
2024-02-14
CVE-2024-25225
A cross-site scripting (XSS) vulnerability in Simple Admin Panel App v1.0 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Category Name parameter under the Add Category function.
CVSS Score
5.4
EPSS Score
0.004
Published
2024-02-14
CVE-2024-25226
A cross-site scripting (XSS) vulnerability in Simple Admin Panel App v1.0 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Category Name parameter under the Add Category function.
CVSS Score
6.1
EPSS Score
0.004
Published
2024-02-14
CVE-2024-25307
Code-projects Cinema Seat Reservation System 1.0 allows SQL Injection via the 'id' parameter at "/Cinema-Reservation/booking.php?id=1."
CVSS Score
9.8
EPSS Score
0.007
Published
2024-02-09


Products
Pricing
Contact Us

Shodan ® - All rights reserved