Lucene search
K

121 matches found

cvelist
cvelist
added 2023/03/30 7:0 p.m.21 views

CVE-2023-1734 SourceCodester Young Entrepreneur E-Negosyo System unrestricted upload

A vulnerability classified as critical has been found in SourceCodester Young Entrepreneur E-Negosyo System 1.0. Affected is an unknown function of the file admin/products/controller.php?action=add. The manipulation of the argument image leads to unrestricted upload. It is possible to launch the...

7.5CVSS9.8AI score0.00623EPSS
Exploits0References2
cve
cve
added 2023/03/30 7:0 p.m.60 views

CVE-2023-1734

SourceCodester Young Entrepreneur E-Negosyo System 1.0 contains a vulnerability where the image parameter in the endpoint admin/products/controller.php?action=add can be manipulated to perform an unrestricted file upload. The issue is exploitable remotely, enabling an attacker to upload arbitrary...

9.8CVSS8.6AI score0.00623EPSS
Exploits0References2Affected Software1
ptsecurity
ptsecurity
added 2023/03/30 12:0 a.m.4 views

PT-2023-17200 · Sourcecodester · Sourcecodester Young Entrepreneur E-Negosyo System

Name of the Vulnerable Software and Affected Versions: SourceCodester Young Entrepreneur E-Negosyo System version 1.0 Description: A critical vulnerability was found in the SourceCodester Young Entrepreneur E-Negosyo System. The issue affects an unknown functionality of the file...

9.8CVSS8.4AI score0.00492EPSS
Exploits0References5
cnnvd
cnnvd
added 2023/03/30 12:0 a.m.6 views

Young Entrepreneur E-Negosyo System SQL注入漏洞

Young Entrepreneur E-Negosyo System is a Young Entrepreneur E-Negosyo System for janobe individual developers. A security vulnerability exists in SourceCodester Young Entrepreneur E-Negosyo System version 1.0, which stems from an incorrect manipulation of the parameter phonenumber resulting in sq...

9.8CVSS6.9AI score0.00492EPSS
Exploits0References3
cnnvd
cnnvd
added 2023/03/30 12:0 a.m.5 views

Young Entrepreneur E-Negosyo System SQL注入漏洞

Young Entrepreneur E-Negosyo System is a Young Entrepreneur E-Negosyo System for janobe individual developers. A security vulnerability exists in SourceCodester Young Entrepreneur E-Negosyo System version 1.0, which stems from an incorrect manipulation of the parameter UUSERNAME resulting in sql...

9.8CVSS7.5AI score0.00554EPSS
Exploits0References3
ptsecurity
ptsecurity
added 2023/03/30 12:0 a.m.4 views

PT-2023-17201 · Sourcecodester · Sourcecodester Young Entrepreneur E-Negosyo System

Name of the Vulnerable Software and Affected Versions: SourceCodester Young Entrepreneur E-Negosyo System version 1.0 Description: A critical issue has been found in the system, affecting some unknown functionality of the file cart/controller.php?action=add. The manipulation of the PROID argument...

8.8CVSS6.3AI score0.00439EPSS
Exploits0References6
cnnvd
cnnvd
added 2023/03/30 12:0 a.m.5 views

Young Entrepreneur E-Negosyo System 代码问题漏洞

Young Entrepreneur E-Negosyo System is a Young Entrepreneur E-Negosyo System for janobe individual developers. A security vulnerability exists in version 1.0 of the SourceCodester Young Entrepreneur E-Negosyo System that stems from an incorrect manipulation of the parameter image resulting in...

9.8CVSS7.5AI score0.00623EPSS
Exploits0References3
cnnvd
cnnvd
added 2023/03/30 12:0 a.m.6 views

Young Entrepreneur E-Negosyo System SQL注入漏洞

Young Entrepreneur E-Negosyo System is a Young Entrepreneur E-Negosyo System for janobe individual developers. A security vulnerability exists in SourceCodester Young Entrepreneur E-Negosyo System version 1.0, which stems from an incorrect manipulation of the parameter search resulting in sql...

9.8CVSS6.9AI score0.00492EPSS
Exploits0References3
nvd
nvd
added 2023/03/29 7:15 a.m.32 views

CVE-2023-1686

A vulnerability was found in SourceCodester Young Entrepreneur E-Negosyo System 1.0. It has been rated as problematic. This issue affects some unknown processing of the file bsenordering/admin/category/index.php of the component GET Parameter Handler. The manipulation of the argument view with th...

6.1CVSS4.5AI score0.00549EPSS
Exploits1References3
osv
osv
added 2023/03/29 7:15 a.m.7 views

CVE-2023-1686

A vulnerability was found in SourceCodester Young Entrepreneur E-Negosyo System 1.0. It has been rated as problematic. This issue affects some unknown processing of the file bsenordering/admin/category/index.php of the component GET Parameter Handler. The manipulation of the argument view with th...

6.1CVSS3.6AI score0.00549EPSS
Exploits1References3
prion
prion
added 2023/03/29 7:15 a.m.21 views

Cross site scripting

A vulnerability was found in SourceCodester Young Entrepreneur E-Negosyo System 1.0. It has been rated as problematic. This issue affects some unknown processing of the file bsenordering/admin/category/index.php of the component GET Parameter Handler. The manipulation of the argument view with th...

4CVSS6AI score0.00549EPSS
Exploits1References3Affected Software1
vulnrichment
vulnrichment
added 2023/03/29 7:0 a.m.10 views

CVE-2023-1686 SourceCodester Young Entrepreneur E-Negosyo System GET Parameter index.php cross site scripting

A vulnerability was found in SourceCodester Young Entrepreneur E-Negosyo System 1.0. It has been rated as problematic. This issue affects some unknown processing of the file bsenordering/admin/category/index.php of the component GET Parameter Handler. The manipulation of the argument view with th...

4CVSS6AI score0.00549EPSS
Exploits1References3
cvelist
cvelist
added 2023/03/29 7:0 a.m.33 views

CVE-2023-1686 SourceCodester Young Entrepreneur E-Negosyo System GET Parameter index.php cross site scripting

A vulnerability was found in SourceCodester Young Entrepreneur E-Negosyo System 1.0. It has been rated as problematic. This issue affects some unknown processing of the file bsenordering/admin/category/index.php of the component GET Parameter Handler. The manipulation of the argument view with th...

4CVSS6.2AI score0.00549EPSS
Exploits1References3
cve
cve
added 2023/03/29 7:0 a.m.93 views

CVE-2023-1686

CVE-2023-1686 affects SourceCodester Young Entrepreneur E-Negosyo System 1.0, specifically the GET parameter handler in the file bsenordering/admin/category/index.php. The issue is a cross-site scripting (XSS) vulnerability caused by manipulating the view argument, e.g. via input like , which can...

6.1CVSS4.8AI score0.00549EPSS
Exploits1References3Affected Software1
ptsecurity
ptsecurity
added 2023/03/29 12:0 a.m.5 views

PT-2023-17169 · Sourcecodester · Sourcecodester Young Entrepreneur E-Negosyo System

Name of the Vulnerable Software and Affected Versions: SourceCodester Young Entrepreneur E-Negosyo System version 1.0 Description: A problem was found in the processing of the file bsenordering/admin/category/index.php, specifically in the GET Parameter Handler component. The issue allows for cro...

6.1CVSS4.1AI score0.00549EPSS
Exploits1References4
prion
prion
added 2023/03/18 9:15 p.m.18 views

Cross site scripting

A vulnerability classified as problematic has been found in SourceCodester Young Entrepreneur E-Negosyo System 1.0. This affects an unknown part of the file /bsenordering/index.php of the component GET Parameter Handler. The manipulation of the argument category with the input alert222 leads to...

4CVSS6AI score0.00549EPSS
Exploits1References3Affected Software1
cvelist
cvelist
added 2023/03/18 8:31 p.m.25 views

CVE-2023-1485 SourceCodester Young Entrepreneur E-Negosyo System GET Parameter index.php cross site scripting

A vulnerability classified as problematic has been found in SourceCodester Young Entrepreneur E-Negosyo System 1.0. This affects an unknown part of the file /bsenordering/index.php of the component GET Parameter Handler. The manipulation of the argument category with the input alert222 leads to...

4CVSS6.2AI score0.00549EPSS
Exploits1References3
cve
cve
added 2023/03/18 8:31 p.m.52 views

CVE-2023-1485

CVE-2023-1485 is an XSS vulnerability in SourceCodester Young Entrepreneur E-Negosyo System 1.0, arising from the GET parameter handler in /bsenordering/index.php where manipulating category with enables a remote XSS attack. Affected: SourceCodester Young Entrepreneur E-Negosyo System 1.0, file ...

6.1CVSS4.8AI score0.00549EPSS
Exploits1References3Affected Software1
cnnvd
cnnvd
added 2023/03/18 12:0 a.m.3 views

SourceCodester Young Entrepreneur E-Negosyo System 跨站脚本漏洞

Young Entrepreneur E-Negosyo System is a Young Entrepreneur E-Negosyo System by janobe individual developers. A cross-site scripting vulnerability exists in version 1.0 of the SourceCodester Young Entrepreneur E-Negosyo System, which stems from a problem with the file /bsenordering/index.php, whe...

6.1CVSS4.1AI score0.00549EPSS
Exploits1References4
checkpoint_advisories
checkpoint_advisories
added 2021/11/17 12:0 a.m.28 views

Sourcecodester E-Negosyo System SQL Injection (CVE-2021-41674)

An SQL injection vulnerability exists in Sourcecodester E-Negosyo System. Successful exploitation of this vulnerability would allow a remote attacker to execute arbitrary SQL commands on the affected system...

7.5CVSS10AI score0.01684EPSS
Exploits1
Rows per page
Query Builder