Phone Shop Sales Management System Security Vulnerabilities and Issues — Phone Shop Sales Management System CVE List

Lucene search

Phone Shop Sales Management System ProjectPhone Shop Sales Management System

4 matches found

CVE•added 2021/07/30 2:15 p.m.•46 views

CVE-2021-36624

Sourcecodester Phone Shop Sales Managements System version 1.0 suffers from a remote SQL injection vulnerability that allows for authentication bypass.

9.8CVSS9.9AI score0.00154EPSS

CVE•added 2021/07/01 2:15 p.m.•45 views

CVE-2021-35337

Sourcecodester Phone Shop Sales Managements System 1.0 is vulnerable to Insecure Direct Object Reference (IDOR). Any attacker will be able to see the invoices of different users by changing the id parameter.

4.3CVSS4.5AI score0.00124EPSS

CVE•added 2021/08/03 6:15 p.m.•38 views

CVE-2021-36623

Arbitrary File Upload in Sourcecodester Phone Shop Sales Management System 1.0 enables RCE.

9.8CVSS9.4AI score0.00418EPSS

CVE•added 2021/11/02 10:15 a.m.•28 views

CVE-2021-36560

Phone Shop Sales Managements System using PHP with Source Code 1.0 is vulnerable to authentication bypass which leads to account takeover of the admin.

9.8CVSS9.7AI score0.00117EPSS