Shodan
Vulnerabilities
Vulnerable Software
Sourcecodester:  Security Vulnerabilities
CVE-2025-6160
A vulnerability, which was classified as critical, has been found in SourceCodester Client Database Management System 1.0. This issue affects some unknown processing of the file /user_customer_create_order.php. The manipulation of the argument user_id leads to sql injection. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used.
CVSS Score
7.3
EPSS Score
0.0
Published
2025-06-17
CVE-2024-48246
Vehicle Management System 1.0 contains a Stored Cross-Site Scripting (XSS) vulnerability in the "Name" parameter of /vehicle-management/booking.php.
CVSS Score
5.4
EPSS Score
0.0
Published
2025-03-05
CVE-2024-34230
A cross-site scripting (XSS) vulnerability in Sourcecodester Laboratory Management System v1.0 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the System Information parameter.
CVSS Score
6.1
EPSS Score
0.004
Published
2024-05-14
CVE-2024-34231
A cross-site scripting (XSS) vulnerability in Sourcecodester Laboratory Management System v1.0 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the System Short Name parameter.
CVSS Score
7.1
EPSS Score
0.002
Published
2024-05-14
CVE-2024-33305
SourceCodester Laboratory Management System 1.0 is vulnerable to Cross Site Scripting (XSS) via "Middle Name" parameter in Create User.
CVSS Score
6.1
EPSS Score
0.001
Published
2024-05-02
CVE-2024-33306
SourceCodester Laboratory Management System 1.0 is vulnerable to Cross Site Scripting (XSS) via "First Name" parameter in Create User.
CVSS Score
7.4
EPSS Score
0.001
Published
2024-05-01
CVE-2024-33307
SourceCodester Laboratory Management System 1.0 is vulnerable to Cross Site Scripting (XSS) via "Last Name" parameter in Create User.
CVSS Score
5.4
EPSS Score
0.001
Published
2024-05-01
CVE-2021-41728
Cross Site Scripting (XSS) vulnerability exists in Sourcecodester News247 CMS 1.0 via the search function in articles.
CVSS Score
6.1
EPSS Score
0.002
Published
2021-10-28
CVE-2020-24932
An SQL Injection vulnerability exists in Sourcecodester Complaint Management System 1.0 via the cid parameter in complaint-details.php.
CVSS Score
9.8
EPSS Score
0.003
Published
2021-10-27
CVE-2019-18414
Sourcecodester Restaurant Management System 1.0 is affected by an admin/staff-exec.php Cross Site Request Forgery vulnerability due to a lack of CSRF protection. This could lead to an attacker tricking the administrator into executing arbitrary code or adding a staff entry via a crafted HTML page.
CVSS Score
8.8
EPSS Score
0.002
Published
2019-10-24


Products
Pricing
Contact Us

Shodan ® - All rights reserved