Shodan
Vulnerabilities
Vulnerable Software
Simple Task Managing System Project:  >> Simple Task Managing System  Security Vulnerabilities
CVE-2022-40032
SQL Injection vulnerability in Simple Task Managing System version 1.0 in login.php in 'username' and 'password' parameters, allows attackers to execute arbitrary code and gain sensitive information.
CVSS Score
9.8
EPSS Score
0.591
Published
2023-02-17
CVE-2022-40026
SourceCodester Simple Task Managing System v1.0 was discovered to contain a SQL injection vulnerability via the bookId parameter at board.php.
CVSS Score
7.2
EPSS Score
0.001
Published
2022-09-21
CVE-2022-40027
SourceCodester Simple Task Managing System v1.0 was discovered to contain a cross-site scripting (XSS) vulnerability via the component newTask.php. This vulnerability allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the shortName parameter.
CVSS Score
6.1
EPSS Score
0.001
Published
2022-09-21
CVE-2022-40028
SourceCodester Simple Task Managing System v1.0 was discovered to contain a cross-site scripting (XSS) vulnerability via the component newProjectValidation.php. This vulnerability allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the fullName parameter.
CVSS Score
4.8
EPSS Score
0.001
Published
2022-09-21
CVE-2022-40029
SourceCodester Simple Task Managing System v1.0 was discovered to contain a cross-site scripting (XSS) vulnerability via the component newProjectValidation.php. This vulnerability allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the shortName parameter.
CVSS Score
4.8
EPSS Score
0.001
Published
2022-09-21
CVE-2022-40030
SourceCodester Simple Task Managing System v1.0 was discovered to contain a SQL injection vulnerability via the bookId parameter at changeStatus.php.
CVSS Score
9.8
EPSS Score
0.002
Published
2022-09-21
CVE-2022-3013
A vulnerability classified as critical has been found in SourceCodester Simple Task Managing System. This affects an unknown part of the file /loginVaLidation.php. The manipulation of the argument login leads to sql injection. It is possible to initiate the attack remotely. The associated identifier of this vulnerability is VDB-207423.
CVSS Score
6.3
EPSS Score
0.001
Published
2022-08-27
CVE-2022-3014
A vulnerability classified as problematic was found in SourceCodester Simple Task Managing System. This vulnerability affects unknown code. The manipulation of the argument student_add leads to cross site scripting. The attack can be initiated remotely. The identifier of this vulnerability is VDB-207424.
CVSS Score
3.5
EPSS Score
0.001
Published
2022-08-27


Products
Pricing
Contact Us

Shodan ® - All rights reserved