Lucene search
K

162 matches found

CNVD
CNVD
added 2023/04/24 12:0 a.m.7 views

Campcodes Coffee Shop POS System SQL Injection Vulnerability (CNVD-2023-38606)

Campcodes Coffee Shop POS System is a coffee shop POS system from Campcodes. Campcodes Coffee Shop POS System v1.0 suffers from a SQL injection vulnerability, which stems from a lack of validation of the parameter id of the file manageuser.php against externally-entered SQL statements, which can ...

9.8CVSS7.9AI score0.01637EPSS
Exploits1References1
OSV
OSV
added 2023/04/21 11:15 a.m.4 views

CVE-2023-2216

A vulnerability classified as problematic was found in Campcodes Coffee Shop POS System 1.0. Affected by this vulnerability is an unknown functionality of the file /classes/Users.php. The manipulation of the argument firstname leads to cross site scripting. The attack can be launched remotely. Th...

6.1CVSS3.8AI score0.00649EPSS
Exploits1References3
Prion
Prion
added 2023/04/21 11:15 a.m.19 views

Cross site scripting

A vulnerability classified as problematic was found in Campcodes Coffee Shop POS System 1.0. Affected by this vulnerability is an unknown functionality of the file /classes/Users.php. The manipulation of the argument firstname leads to cross site scripting. The attack can be launched remotely. Th...

4CVSS6AI score0.00649EPSS
Exploits1References3Affected Software1
CVE
CVE
added 2023/04/21 10:31 a.m.56 views

CVE-2023-2216

CVE-2023-2216 affects Campcodes Coffee Shop POS System v1.0. The vulnerability is in an unknown functionality of /classes/Users.php where manipulating the firstname parameter triggers cross-site scripting. Attacks can be launched remotely and the exploit has been publicly disclosed. No patch/vers...

6.1CVSS4.8AI score0.00649EPSS
Exploits1References3Affected Software1
NVD
NVD
added 2023/04/21 10:15 a.m.21 views

CVE-2023-2213

A vulnerability was found in Campcodes Coffee Shop POS System 1.0. It has been declared as critical. This vulnerability affects unknown code of the file /admin/products/manageproduct.php. The manipulation of the argument id leads to sql injection. The attack can be initiated remotely. The exploit...

7.5CVSS7AI score0.00607EPSS
Exploits1References3
OSV
OSV
added 2023/04/21 10:15 a.m.5 views

CVE-2023-2213

A vulnerability was found in Campcodes Coffee Shop POS System 1.0. It has been declared as critical. This vulnerability affects unknown code of the file /admin/products/manageproduct.php. The manipulation of the argument id leads to sql injection. The attack can be initiated remotely. The exploit...

7.5CVSS6.6AI score0.00607EPSS
Exploits1References3
NVD
NVD
added 2023/04/21 10:15 a.m.16 views

CVE-2023-2212

A vulnerability was found in Campcodes Coffee Shop POS System 1.0. It has been classified as critical. This affects an unknown part of the file /admin/products/viewproduct.php. The manipulation of the argument id leads to sql injection. It is possible to initiate the attack remotely. The exploit...

7.5CVSS6.9AI score0.00607EPSS
Exploits1References3
NVD
NVD
added 2023/04/21 10:15 a.m.23 views

CVE-2023-2214

A vulnerability was found in Campcodes Coffee Shop POS System 1.0. It has been rated as critical. This issue affects some unknown processing of the file /admin/sales/managesale.php. The manipulation of the argument id leads to sql injection. The attack may be initiated remotely. The exploit has...

7.5CVSS6.9AI score0.00607EPSS
Exploits1References3
Prion
Prion
added 2023/04/21 10:15 a.m.22 views

Sql injection

A vulnerability classified as critical has been found in Campcodes Coffee Shop POS System 1.0. Affected is an unknown function of the file /admin/user/manageuser.php. The manipulation of the argument id leads to sql injection. It is possible to launch the attack remotely. The exploit has been...

6.5CVSS9.7AI score0.01637EPSS
Exploits1References3Affected Software1
Prion
Prion
added 2023/04/21 10:15 a.m.17 views

Sql injection

A vulnerability was found in Campcodes Coffee Shop POS System 1.0. It has been classified as critical. This affects an unknown part of the file /admin/products/viewproduct.php. The manipulation of the argument id leads to sql injection. It is possible to initiate the attack remotely. The exploit...

6.5CVSS7.8AI score0.00607EPSS
Exploits1References3Affected Software1
Cvelist
Cvelist
added 2023/04/21 10:0 a.m.25 views

CVE-2023-2215 Campcodes Coffee Shop POS System manage_user.php sql injection

A vulnerability classified as critical has been found in Campcodes Coffee Shop POS System 1.0. Affected is an unknown function of the file /admin/user/manageuser.php. The manipulation of the argument id leads to sql injection. It is possible to launch the attack remotely. The exploit has been...

6.5CVSS10AI score0.01637EPSS
Exploits1References3
CVE
CVE
added 2023/04/21 10:0 a.m.75 views

CVE-2023-2215

The CVE-2023-2215 entry covers Campcodes Coffee Shop POS System v1.0. Affected is an unknown function in /admin/user/manage_user.php where manipulation of the id parameter enables SQL injection. The vulnerability enables remote exploitation, and public disclosure of the exploit is noted. Connecte...

9.8CVSS7.5AI score0.01637EPSS
Exploits1References3Affected Software1
Cvelist
Cvelist
added 2023/04/21 10:0 a.m.24 views

CVE-2023-2214 Campcodes Coffee Shop POS System manage_sale.php sql injection

A vulnerability was found in Campcodes Coffee Shop POS System 1.0. It has been rated as critical. This issue affects some unknown processing of the file /admin/sales/managesale.php. The manipulation of the argument id leads to sql injection. The attack may be initiated remotely. The exploit has...

6.5CVSS8.1AI score0.00607EPSS
Exploits1References3
CVE
CVE
added 2023/04/21 10:0 a.m.55 views

CVE-2023-2214

CVE-2023-2214 affects Campcodes Coffee Shop POS System v1.0. The vulnerability is an SQL injection in the /admin/sales/manage_sale.php file caused by unsafely handling the id parameter. It can be triggered remotely; exploits have been disclosed publicly (VDB-226979). Reports from multiple sources...

7.5CVSS7.2AI score0.00607EPSS
Exploits1References3Affected Software1
CVE
CVE
added 2023/04/21 9:31 a.m.56 views

CVE-2023-2213

CVE-2023-2213 affects Campcodes Coffee Shop POS System v1.0. The vulnerability is a SQL injection in the file /admin/products/manage_product.php caused by unsafely handling the id parameter, enabling remote exploitation. Multiple connected sources confirm the issue and the exploitation is public....

7.5CVSS7.2AI score0.00607EPSS
Exploits1References3Affected Software1
Cvelist
Cvelist
added 2023/04/21 9:31 a.m.12 views

CVE-2023-2213 Campcodes Coffee Shop POS System manage_product.php sql injection

A vulnerability was found in Campcodes Coffee Shop POS System 1.0. It has been declared as critical. This vulnerability affects unknown code of the file /admin/products/manageproduct.php. The manipulation of the argument id leads to sql injection. The attack can be initiated remotely. The exploit...

6.5CVSS8.1AI score0.00607EPSS
Exploits1References3
Cvelist
Cvelist
added 2023/04/21 9:31 a.m.18 views

CVE-2023-2212 Campcodes Coffee Shop POS System view_product.php sql injection

A vulnerability was found in Campcodes Coffee Shop POS System 1.0. It has been classified as critical. This affects an unknown part of the file /admin/products/viewproduct.php. The manipulation of the argument id leads to sql injection. It is possible to initiate the attack remotely. The exploit...

6.5CVSS8AI score0.00607EPSS
Exploits1References3
Vulnrichment
Vulnrichment
added 2023/04/21 9:31 a.m.6 views

CVE-2023-2212 Campcodes Coffee Shop POS System view_product.php sql injection

A vulnerability was found in Campcodes Coffee Shop POS System 1.0. It has been classified as critical. This affects an unknown part of the file /admin/products/viewproduct.php. The manipulation of the argument id leads to sql injection. It is possible to initiate the attack remotely. The exploit...

6.5CVSS7.9AI score0.00607EPSS
Exploits1References3
CVE
CVE
added 2023/04/21 9:31 a.m.70 views

CVE-2023-2212

CVE-2023-2212 affects Campcodes Coffee Shop POS System v1.0. The SQL injection vulnerability stems from unsafely handling the id parameter in /admin/products/view_product.php, enabling remote exploitation. Multiple connected sources confirm the issue and public disclosure, with no provided patch/...

7.5CVSS7.1AI score0.00607EPSS
Exploits1References3Affected Software1
NVD
NVD
added 2023/04/21 9:15 a.m.17 views

CVE-2023-2211

A vulnerability was found in Campcodes Coffee Shop POS System 1.0 and classified as critical. Affected by this issue is some unknown functionality of the file /admin/categories/managecategory.php. The manipulation of the argument id leads to sql injection. The attack may be launched remotely. The...

7.5CVSS7.2AI score0.00607EPSS
Exploits1References3
Rows per page
Query Builder