Lucene search
K

170 matches found

CNNVD
CNNVD
added 2022/10/28 12:0 a.m.4 views

Simple Cold Storage Management System SQL注入漏洞

Simple Cold Storage Management System is a Simple Cold Storage Management System by Carlo Montero Personal Developer. A SQL injection vulnerability exists in Simple Cold Storage Management System version 1.0, which originates from the id parameter of /admin/?page=bookings/viewdetails being...

7.2CVSS7.3AI score0.00804EPSS
Exploits1References2
Vulnrichment
Vulnrichment
added 2022/10/28 12:0 a.m.4 views

CVE-2022-43229

Simple Cold Storage Management System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /bookings/updatestatus.php...

7.2AI score0.01066EPSS
Exploits2References2
Cvelist
Cvelist
added 2022/10/28 12:0 a.m.22 views

CVE-2022-43230

Simple Cold Storage Management System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /admin/?page=bookings/viewdetails...

7.5AI score0.00804EPSS
Exploits1References1
CVE
CVE
added 2022/10/28 12:0 a.m.51 views

CVE-2022-43230

CVE-2022-43230 affects Simple Cold Storage Management System v1.0. The vulnerability is an SQL injection in the id parameter of /admin/?page=bookings/view_details. The attached metrics indicate CVSS v3.1 base score 7.2 (HIGH) with Network attack vector, Low attack complexity, Privileges required ...

7.2CVSS7.2AI score0.00804EPSS
Exploits1References1Affected Software1
CVE
CVE
added 2022/10/28 12:0 a.m.45 views

CVE-2022-43229

CVE-2022-43229 pertains to a SQL injection vulnerability in Simple Cold Storage Management System v1.0, exploitable via the id parameter on the /bookings/update_status.php endpoint. The root cause is unauthenticated/non-validated input being used in a SQL query, enabling an attacker to view, modi...

7.2CVSS7.2AI score0.01066EPSS
Exploits2References2Affected Software1
NVD
NVD
added 2022/10/18 1:15 p.m.36 views

CVE-2022-3587

A vulnerability was found in SourceCodester Simple Cold Storage Management System 1.0. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the component My Account. The manipulation of the argument First Name leads to cross site scripting. The attack...

5.4CVSS0.00459EPSS
Exploits1References2
ATTACKERKB
ATTACKERKB
added 2022/10/18 1:15 p.m.7 views

CVE-2022-3587

A vulnerability was found in SourceCodester Simple Cold Storage Management System 1.0. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the component My Account. The manipulation of the argument First Name leads to cross site scripting. The attack...

5.4CVSS3.5AI score0.00459EPSS
Exploits1References3Affected Software1
OSV
OSV
added 2022/10/18 1:15 p.m.4 views

CVE-2022-3587

A vulnerability was found in SourceCodester Simple Cold Storage Management System 1.0. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the component My Account. The manipulation of the argument First Name leads to cross site scripting. The attack...

5.4CVSS3.7AI score0.00459EPSS
Exploits1References2
Prion
Prion
added 2022/10/18 1:15 p.m.24 views

Cross site scripting

A vulnerability was found in SourceCodester Simple Cold Storage Management System 1.0. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the component My Account. The manipulation of the argument First Name leads to cross site scripting. The attack...

4.9CVSS5.3AI score0.00459EPSS
Exploits1References2Affected Software1
NVD
NVD
added 2022/10/18 11:15 a.m.20 views

CVE-2022-3582

A vulnerability has been found in SourceCodester Simple Cold Storage Management System 1.0 and classified as problematic. Affected by this vulnerability is an unknown functionality. The manipulation of the argument change password leads to cross-site request forgery. The attack can be launched...

4.3CVSS0.00253EPSS
Exploits1References2
Prion
Prion
added 2022/10/18 11:15 a.m.22 views

Cross site request forgery (csrf)

A vulnerability classified as problematic has been found in SourceCodester Simple Cold Storage Management System 1.0. Affected is an unknown function of the file /csms/?page=contactus of the component Contact Us. The manipulation leads to cross-site request forgery. It is possible to launch the...

4.3CVSS4.8AI score0.00274EPSS
Exploits1References2Affected Software1
Cvelist
Cvelist
added 2022/10/18 12:0 a.m.26 views

CVE-2022-3585 SourceCodester Simple Cold Storage Management System Contact Us cross-site request forgery

A vulnerability classified as problematic has been found in SourceCodester Simple Cold Storage Management System 1.0. Affected is an unknown function of the file /csms/?page=contactus of the component Contact Us. The manipulation leads to cross-site request forgery. It is possible to launch the...

4.3CVSS5AI score0.00274EPSS
Exploits1References2
CVE
CVE
added 2022/10/18 12:0 a.m.63 views

CVE-2022-3582

CVE-2022-3582 affects SourceCodester Simple Cold Storage Management System 1.0. The vulnerability arises from manipulating the “change password” parameter, enabling cross-site request forgery (CSRF). Reportedly exploitable remotely; exploits have been disclosed (VDB-211189). Multiple feeds (NVD, ...

4.3CVSS4.2AI score0.00253EPSS
Exploits1References2Affected Software1
CVE
CVE
added 2022/10/18 12:0 a.m.59 views

CVE-2022-3585

This CVE-2022-3585 affects SourceCodester Simple Cold Storage Management System 1.0. The vulnerability is a cross-site request forgery arising from an unknown function in the file /csms/?page=contact_us under the Contact Us component. It can be exploited remotely and the exploit has been disclose...

4.3CVSS4.7AI score0.00274EPSS
Exploits1References2Affected Software1
CNNVD
CNNVD
added 2022/10/18 12:0 a.m.3 views

Simple Cold Storage Management System 安全漏洞

Simple Cold Storage Management System is a Simple Cold Storage Management System by Carlo Montero Personal Developer. A security vulnerability exists in Simple Cold Storage Management System version 1.0, which stems from an unknown function in the file /csms/?page=contactus that is affected and...

4.3CVSS4.8AI score0.00274EPSS
Exploits1References3
CVE
CVE
added 2022/10/18 12:0 a.m.56 views

CVE-2022-3587

SourceCodester Simple Cold Storage Management System 1.0 is affected in the My Account component, where manipulating the First Name parameter triggers cross-site scripting. The vulnerability can be exploited remotely; public PoC/exploit appears in references. Affected product details and root cau...

5.4CVSS4.4AI score0.00459EPSS
Exploits1References2Affected Software1
Cvelist
Cvelist
added 2022/10/18 12:0 a.m.28 views

CVE-2022-3587 SourceCodester Simple Cold Storage Management System My Account cross site scripting

A vulnerability was found in SourceCodester Simple Cold Storage Management System 1.0. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the component My Account. The manipulation of the argument First Name leads to cross site scripting. The attack...

3.5CVSS5.5AI score0.00459EPSS
Exploits1References2
Positive Technologies
Positive Technologies
added 2022/10/18 12:0 a.m.10 views

PT-2022-22980 · Unknown · Sourcecodester Simple Cold Storage Management System

Name of the Vulnerable Software and Affected Versions: SourceCodester Simple Cold Storage Management System version 1.0 Description: A vulnerability was found in the My Account component, where the manipulation of the First Name argument leads to cross-site scripting. The attack can be launched...

5.4CVSS5.2AI score0.00459EPSS
Exploits1References5
Cvelist
Cvelist
added 2022/10/18 12:0 a.m.24 views

CVE-2022-3582 SourceCodester Simple Cold Storage Management System cross-site request forgery

A vulnerability has been found in SourceCodester Simple Cold Storage Management System 1.0 and classified as problematic. Affected by this vulnerability is an unknown functionality. The manipulation of the argument change password leads to cross-site request forgery. The attack can be launched...

4.3CVSS5.1AI score0.00253EPSS
Exploits1References2
Positive Technologies
Positive Technologies
added 2022/10/18 12:0 a.m.5 views

PT-2022-22965 · Unknown · Sourcecodester Simple Cold Storage Management System

Name of the Vulnerable Software and Affected Versions: SourceCodester Simple Cold Storage Management System version 1.0 Description: A vulnerability has been found in the system, classified as problematic, affecting an unknown functionality. The manipulation of the change password argument leads ...

4.3CVSS4.1AI score0.00253EPSS
Exploits1References5
Rows per page
Query Builder