Lucene search
K

51 matches found

NVD
NVD
added 2026/06/17 10:40 a.m.8 views

CVE-2026-35262

Vulnerability in the Oracle Data Integrator product of Oracle Fusion Middleware component: Market Place. Supported versions that are affected are 12.2.1.4.0 and 14.1.2.0.0. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise Oracle Data...

8.3CVSS0.00387EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/06/16 12:0 a.m.19 views

PT-2026-49840

Name of the Vulnerable Software and Affected Versions Oracle Data Integrator version 12.2.1.4.0 Oracle Data Integrator version 14.1.2.0.0 Description An issue exists in the Market Place component of the Oracle Data Integrator product of Oracle Fusion Middleware. A low privileged attacker with...

8.3CVSS5.9AI score0.00387EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2018-8295

Malware in sbrugna...

6.1CVSS6.3AI score0.00668EPSS
Exploits1References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2022-33958

Malicious code in bioql PyPI...

5.4CVSS5.7AI score0.00476EPSS
Exploits1References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2022-35219

Malicious code in bioql PyPI...

9.8CVSS9.1AI score0.01463EPSS
Exploits3References2
RedhatCVE
RedhatCVE
added 2025/05/23 1:15 a.m.9 views

CVE-2022-29627

An insecure direct object reference IDOR in Online Market Place Site v1.0 allows attackers to modify products that are owned by other sellers...

4.3CVSS6.9AI score0.00529EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/22 10:44 p.m.11 views

CVE-2022-29628

A cross-site scripting XSS vulnerability in /omps/seller of Online Market Place Site v1.0 allows attackers to execute arbitrary web cripts or HTML via a crafted payload injected into the Page parameter...

5.4CVSS5.8AI score0.00476EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/22 10:1 p.m.10 views

CVE-2022-30003

Sourcecodester Online Market Place Site 1.0 is vulnerable to Cross Site Scripting XSS, allowing attackers to register as a Seller then create new products containing XSS payloads in the 'Product Title' and 'Short Description' fields...

5.4CVSS5.7AI score0.00497EPSS
Exploits3References1
RedhatCVE
RedhatCVE
added 2025/05/22 7:8 p.m.7 views

CVE-2021-20833

The SNKRDUNK Market Place App for iOS versions prior to 2.2.0 does not verify server certificate properly, which allows man-in-the-middle attackers to eavesdrop on and/or alter encrypted communication via a crafted certificate...

7.4CVSS6.4AI score0.0047EPSS
Exploits0References1
OSV
OSV
added 2022/09/26 8:15 p.m.3 views

CVE-2022-30004

Sourcecodester Online Market Place Site v1.0 suffers from an unauthenticated blind SQL Injection Vulnerability allowing remote attackers to dump the SQL database via time-based SQL injection...

9.8CVSS5.9AI score0.01463EPSS
Exploits3References2
Prion
Prion
added 2022/09/26 8:15 p.m.12 views

Sql injection

Sourcecodester Online Market Place Site v1.0 suffers from an unauthenticated blind SQL Injection Vulnerability allowing remote attackers to dump the SQL database via time-based SQL injection...

7.5CVSS9.8AI score0.01463EPSS
Exploits3References2Affected Software1
CVE
CVE
added 2022/09/26 7:16 p.m.54 views

CVE-2022-30004

CVE-2022-30004 affects Sourcecodester Online Market Place Site, version 1.0, describing an unauthenticated blind SQL injection vulnerability that enables remote attackers to dump the SQL database via time-based SQL injection. Root cause is improper handling of SQL queries in the application, allo...

9.8CVSS9.9AI score0.01463EPSS
Exploits3References2Affected Software1
NVD
NVD
added 2022/09/26 7:15 p.m.18 views

CVE-2022-30003

Sourcecodester Online Market Place Site 1.0 is vulnerable to Cross Site Scripting XSS, allowing attackers to register as a Seller then create new products containing XSS payloads in the 'Product Title' and 'Short Description' fields...

5.4CVSS0.00497EPSS
Exploits3References2
OSV
OSV
added 2022/09/26 7:15 p.m.6 views

CVE-2022-30003

Sourcecodester Online Market Place Site 1.0 is vulnerable to Cross Site Scripting XSS, allowing attackers to register as a Seller then create new products containing XSS payloads in the 'Product Title' and 'Short Description' fields...

5.4CVSS5.8AI score0.00497EPSS
Exploits3References2
Prion
Prion
added 2022/09/26 7:15 p.m.17 views

Cross site scripting

Sourcecodester Online Market Place Site 1.0 is vulnerable to Cross Site Scripting XSS, allowing attackers to register as a Seller then create new products containing XSS payloads in the 'Product Title' and 'Short Description' fields...

4.9CVSS5.1AI score0.00497EPSS
Exploits3References2Affected Software1
CVE
CVE
added 2022/09/26 6:27 p.m.70 views

CVE-2022-30003

CVE-2022-30003 affects Sourcecodester Online Market Place Site 1.0. The vulnerability is an authenticated stored XSS in the product entry workflow: attackers can register as a Seller and save new products with payloads in the Product Title and Short Description fields. Multiple sources corroborat...

5.4CVSS5.1AI score0.00497EPSS
Exploits3References2Affected Software1
Vulnrichment
Vulnrichment
added 2022/09/26 6:27 p.m.7 views

CVE-2022-30003

Sourcecodester Online Market Place Site 1.0 is vulnerable to Cross Site Scripting XSS, allowing attackers to register as a Seller then create new products containing XSS payloads in the 'Product Title' and 'Short Description' fields...

5.7AI score0.00497EPSS
Exploits3References2
Positive Technologies
Positive Technologies
added 2022/09/26 12:0 a.m.4 views

PT-2022-19964 · Unknown · Sourcecodester Online Market Place Site

Name of the Vulnerable Software and Affected Versions: Sourcecodester Online Market Place Site version 1.0 Description: The issue allows remote attackers to dump the SQL database via time-based SQL injection. This is an unauthenticated blind SQL Injection, enabling attackers to access the databas...

9.8CVSS9.8AI score0.01463EPSS
Exploits3References6
Positive Technologies
Positive Technologies
added 2022/09/26 12:0 a.m.5 views

PT-2022-19963 · Unknown · Sourcecodester Online Market Place Site

Name of the Vulnerable Software and Affected Versions: Sourcecodester Online Market Place Site version 1.0 Description: The issue allows attackers to register as a Seller and then create new products containing XSS payloads in the 'Product Title' and 'Short Description' fields. This enables Cross...

5.4CVSS5.1AI score0.00497EPSS
Exploits3References5
CNNVD
CNNVD
added 2022/09/05 12:0 a.m.3 views

Online Market Place Site SQL注入漏洞

Online Market Place Site is an online marketplace site by Carlo Montero Personal Developer. Online Market Place Site version 1.0 suffers from a SQL injection vulnerability that stems from an unauthenticated blind SQL injection vulnerability that allows remote attackers to dump a SQL database via...

9.8CVSS8.5AI score0.01463EPSS
Exploits3References5
Rows per page
Query Builder