9 matches found
CVE-2022-26170
Simple Mobile Comparison Website v1.0 was discovered to contain a SQL injection vulnerability via the search parameter...
EUVD-2022-30736
Malicious code in bioql PyPI...
CVE-2023-2397
A vulnerability, which was classified as problematic, has been found in SourceCodester Simple Mobile Comparison Website 1.0. This issue affects some unknown processing of the file classes/Master.php?f=savefield. The manipulation of the argument Field Name leads to cross site scripting. The attack...
CVE-2023-2397 SourceCodester Simple Mobile Comparison Website cross site scripting
A vulnerability, which was classified as problematic, has been found in SourceCodester Simple Mobile Comparison Website 1.0. This issue affects some unknown processing of the file classes/Master.php?f=savefield. The manipulation of the argument Field Name leads to cross site scripting. The attack...
CVE-2023-2397
CVE-2023-2397 affects SourceCodester Simple Mobile Comparison Website 1.0. The vulnerability is an XSS issue in the endpoint classes/Master.php?f=save_field where the Field Name parameter can be manipulated to trigger cross-site scripting, potentially exploitable remotely. Public disclosure is no...
Simple Mobile Comparison Website 跨站脚本漏洞
Simple Mobile Comparison Website is a mobile comparison website by Carlo Montero personal developer. It allows users to compare the specifications of smartphones. A cross-site scripting vulnerability exists in version 1.0 of Simple Mobile Comparison Website, which stems from cross-site scripting...
CVE-2023-1792
CVE-2023-1792 affects SourceCodester Simple Mobile Comparison Website 1.0. The vulnerability resides in the GET Parameter Handler, specifically the file /admin/fields/manage_field.php, where manipulating the id argument leads to SQL injection. The issue can be exploited remotely and has been disc...
Simple Mobile Comparison Website 1.0 Cross Site Scripting
Exploit Title: Simple Mobile Comparison Website v1.0 - Reflected Cross-Site Scripting XSS Unauthenticated Author: Ayedh AlQahtani Discovery Date: 2022-03-18 Vendor Homepage: https://www.sourcecodester.com/ Tested Version: v1.0 Tested on: XAMPP, Windows 11 Pro x64 es Vulnerability Type: Reflected...
CVE-2022-26170
Affected software: Simple Mobile Comparison Website v1.0. The vulnerability is a SQL injection in the search parameter, stemming from unsanitized input in the search functionality. Documented impact per CVSS: Confidentiality, Integrity, and Availability all at high/partial levels (C/H, I/H, A/H f...