Online Market Place Site Security Vulnerabilities and Issues — Online Market Place Site CVE List

Lucene search

Online Market Place Site ProjectOnline Market Place Site

4 matches found

CVE•added 2022/09/26 7:15 p.m.•59 views

CVE-2022-30003

Sourcecodester Online Market Place Site 1.0 is vulnerable to Cross Site Scripting (XSS), allowing attackers to register as a Seller then create new products containing XSS payloads in the 'Product Title' and 'Short Description' fields.

5.4CVSS5.1AI score0.00151EPSS

CVE•added 2022/06/02 2:15 p.m.•51 views

CVE-2022-29627

An insecure direct object reference (IDOR) in Online Market Place Site v1.0 allows attackers to modify products that are owned by other sellers.

4.3CVSS4.6AI score0.00152EPSS

CVE•added 2022/06/02 2:15 p.m.•46 views

CVE-2022-29628

A cross-site scripting (XSS) vulnerability in /omps/seller of Online Market Place Site v1.0 allows attackers to execute arbitrary web cripts or HTML via a crafted payload injected into the Page parameter.

5.4CVSS5.2AI score0.00195EPSS

CVE•added 2022/09/26 8:15 p.m.•44 views

CVE-2022-30004

Sourcecodester Online Market Place Site v1.0 suffers from an unauthenticated blind SQL Injection Vulnerability allowing remote attackers to dump the SQL database via time-based SQL injection..

9.8CVSS9.9AI score0.00722EPSS