Lucene search
K

7 matches found

NVD
NVD
added 2023/07/28 5:15 a.m.23 views

CVE-2023-3985

A vulnerability has been found in SourceCodester Online Jewelry Store 1.0 and classified as critical. This vulnerability affects unknown code of the file login.php. The manipulation of the argument username/password leads to sql injection. The attack can be initiated remotely. The exploit has bee...

9.8CVSS8.2AI score0.00823EPSS
Exploits1References3
Cvelist
Cvelist
added 2023/07/28 4:31 a.m.30 views

CVE-2023-3985 SourceCodester Online Jewelry Store login.php sql injection

A vulnerability has been found in SourceCodester Online Jewelry Store 1.0 and classified as critical. This vulnerability affects unknown code of the file login.php. The manipulation of the argument username/password leads to sql injection. The attack can be initiated remotely. The exploit has bee...

7.5CVSS10AI score0.00823EPSS
Exploits1References3
CVE
CVE
added 2023/07/28 4:31 a.m.48 views

CVE-2023-3985

CVE-2023-3985 affects SourceCodester Online Jewelry Store 1.0. The vulnerability is in the login.php file where manipulation of the username/password parameters enables SQL injection. The issue is exploitable remotely and has been publicly disclosed; multiple sources classify the entry as high/cr...

9.8CVSS8.9AI score0.00823EPSS
Exploits1References3Affected Software1
NVD
NVD
added 2023/05/24 11:15 a.m.12 views

CVE-2023-2864

A vulnerability was found in SourceCodester Online Jewelry Store 1.0 and classified as problematic. Affected by this issue is some unknown functionality of the file customer.php of the component POST Parameter Handler. The manipulation of the argument Custid leads to cross site scripting. The...

6.1CVSS4.4AI score0.00549EPSS
Exploits1References3
Prion
Prion
added 2023/05/24 11:15 a.m.17 views

Cross site scripting

A vulnerability was found in SourceCodester Online Jewelry Store 1.0 and classified as problematic. Affected by this issue is some unknown functionality of the file customer.php of the component POST Parameter Handler. The manipulation of the argument Custid leads to cross site scripting. The...

4CVSS6AI score0.00549EPSS
Exploits1References3Affected Software1
NVD
NVD
added 2023/05/19 5:15 p.m.23 views

CVE-2023-2815

A vulnerability classified as critical was found in SourceCodester Online Jewelry Store 1.0. Affected by this vulnerability is an unknown functionality of the file supplier.php of the component POST Parameter Handler. The manipulation of the argument suppid leads to sql injection. The attack can ...

9.8CVSS7.4AI score0.00726EPSS
Exploits1References3
CNNVD
CNNVD
added 2023/04/19 12:0 a.m.4 views

Sourcecodester Online Jewelry Shop 跨站脚本漏洞

Online Jewelry Shop is an online ordering system for jewelry store or store customers by oretnom23 individual developer. A security vulnerability exists in Sourcecodester Online Jewelry Shop v1.0, which stems from the presence of a cross-site scripting XSS vulnerability that can be exploited by a...

5.4CVSS5.8AI score0.00365EPSS
Exploits0References2
Rows per page
Query Builder