CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

11 matches found

OSV•added 2023/04/25 9:15 p.m.•1 views

CVE-2023-2293

A vulnerability was found in SourceCodester Purchase Order Management System 1.0. It has been classified as problematic. This affects an unknown part of the file classes/Master.php?f=saveitem. The manipulation of the argument description with the input alertdocument.cookie leads to cross site...

4.8CVSS3.8AI score0.00302EPSS

Exploits1References3

CNNVD•added 2022/11/28 12:0 a.m.•4 views

Purchase Order Management System 代码问题漏洞

Purchase Order Management System is a Purchase Order Management System by Carlo Montero Personal Developer. A code issue vulnerability exists in Purchase Order Management System v1.0, which was discovered via /purchaseorder/admin/?page=systeminfo contains a file upload vulnerability...

9.8CVSS8.5AI score0.00841EPSS

Exploits1References2

OSV•added 2022/10/14 11:15 a.m.•1 views

CVE-2022-3503

A vulnerability was found in SourceCodester Purchase Order Management System 1.0. It has been declared as problematic. This vulnerability affects unknown code of the component Supplier Handler. The manipulation of the argument Supplier Name/Address/Contact person/Contact leads to cross site...

5.4CVSS3.8AI score0.00223EPSS

Exploits1References2

CNNVD•added 2022/10/14 12:0 a.m.•2 views

Purchase Order Management System SQL注入漏洞

Purchase Order Management System is a purchase order management system by Carlo Montero, an individual developer. A security vulnerability exists in Purchase Order Management System version 1.0, which is caused by a sql injection due to manipulation of the parameter id...

9.8CVSS8.3AI score0.00245EPSS

Exploits1References3

CNNVD•added 2022/10/14 12:0 a.m.•2 views

Purchase Order Management System 跨站脚本漏洞

Purchase Order Management System is a purchase order management system developed by Carlo Montero. A security vulnerability exists in Purchase Order Management System version 1.0, which is a cross-site scripting vulnerability caused by manipulation of the parameter "page"...

5.4CVSS5.3AI score0.00224EPSS

Exploits1References3

NVD•added 2022/04/21 8:15 p.m.•10 views

CVE-2022-28022

Purchase Order Management System v1.0 was discovered to contain a SQL injection vulnerability via /purchaseorder/classes/Master.php?f=deleteitem...

9.8CVSS0.11037EPSS

Exploits1References1

Prion•added 2022/04/21 8:15 p.m.•11 views

Sql injection

Purchase Order Management System v1.0 was discovered to contain a SQL injection vulnerability via /purchaseorder/classes/Master.php?f=deleteitem...

7.5CVSS9.8AI score0.11037EPSS

Exploits1References1Affected Software1

Cvelist•added 2022/04/21 7:5 p.m.•13 views

CVE-2022-28021

Purchase Order Management System v1.0 was discovered to contain a remote code execution RCE vulnerability via /purchaseorder/admin/?page=user...

10AI score0.13885EPSS

Exploits1References1

CNNVD•added 2022/04/21 12:0 a.m.•3 views

Purchase Order Management System 代码问题漏洞

Purchase Order Management System is a purchase order management system by Carlo Montero Personal Developer. Purchase Order Management System v1.0 has a security vulnerability that can be exploited by attackers via /purchaseorder/admin/?page=user...

9.8CVSS8.3AI score0.13885EPSS

Exploits1References2

CNNVD•added 2022/04/21 12:0 a.m.•2 views

Purchase Order Management System SQL注入漏洞

Purchase Order Management System is a purchase order management system. Purchase Order Management System v1.0 is vulnerable to SQL injection, which can be exploited by attackers to execute illegal SQL commands to steal sensitive database data...

9.8CVSS6AI score0.11037EPSS

Exploits1References2

OSV•added 2022/01/24 3:15 p.m.•2 views

CVE-2021-40908

SQL injection vulnerability in Login.php in Sourcecodester Purchase Order Management System v1 by oretnom23, allows attackers to execute arbitrary SQL commands via the username parameter...

9.8CVSS6.1AI score0.11EPSS

Exploits1References1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by