Simple Cold Storage Management System Project Security Vulnerabilities

CVE-2022-3547

A vulnerability was found in SourceCodester Simple Cold Storage Management System 1.0. It has been classified as problematic. This affects an unknown part of the file /csms/admin/?page=system_info of the component Setting Handler. The manipulation of the argument System Name/System Short Name...

CVE-2022-43229

Simple Cold Storage Management System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at...

CVE-2022-43230

Simple Cold Storage Management System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at...

CVE-2022-42230

Simple Cold Storage Management System v1.0 is vulnerable to SQL Injection via...

CVE-2021-45253

The id parameter in view_storage.php from Simple Cold Storage Management System 1.0 appears to be vulnerable to SQL injection attacks. A payload injects a SQL sub-query that calls MySQL's load_file function with a UNC file path that references a URL on an external domain. The application...