CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Egavilanmedia: >> Expense Management System >> 1.0 Security Vulnerabilities

CVE-2021-44098

EGavilan Media Expense-Management-System 1.0 is vulnerable to SQL Injection via /expense_action.php. This allows a remote attacker to compromise Application SQL database.

CVSS Score

9.8

EPSS Score

0.005

Published

2022-06-02

CVE-2020-35395

XSS in the Add Expense Component of EGavilan Media Expense Management System 1.0 allows an attacker to permanently store malicious JavaScript code via the 'description' field

CVSS Score

6.1

EPSS Score

0.002

Published

2020-12-15

Page 1

Vulnerabilities

Vulnerable Software

Egavilanmedia: >> Expense Management System >> 1.0 Security Vulnerabilities

Products

Pricing

Contact Us