CVE-2022-2363

CVE-2022-2363 affects SourceCodester Simple Parking Management System 1.0. The vulnerability exists in the /ci_spms/admin/search/searching/ functionality, where input for the parameter search can be manipulated to inject a script, causing cross-site scripting (XSS). The public exploit indicates r...

CVE-2022-2364

CVE-2022-2364 affects SourceCodester Simple Parking Management System 1.0. The vulnerability is a cross-site scripting (XSS) flaw in the /ci_spms/admin/category path, triggered by manipulating the vehicle_type argument with a payload such as “>”. It is described as exploitable remotely and the...