VYPR
leads to cross site scripting. The attack can be launched remotely. The exploit has been disclosed to the public and may be used.","additionalType":"https://schema.org/SoftwareApplication","sameAs":["https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2293"]},"keywords":"CVE-2022-2293, Low, Sourcecodester Simple Sales Management System, Sourcecodester Simple Barangay Management System","mentions":[{"@type":"SoftwareApplication","name":"Simple Sales Management System","applicationCategory":"SecurityApplication","publisher":{"@type":"Organization","name":"Sourcecodester"}},{"@type":"SoftwareApplication","name":"Simple Barangay Management System","applicationCategory":"SecurityApplication","publisher":{"@type":"Organization","name":"Sourcecodester"}}],"isAccessibleForFree":true},{"@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https://portal.vyprsec.ai/"},{"@type":"ListItem","position":2,"name":"CVEs","item":"https://portal.vyprsec.ai/cves"},{"@type":"ListItem","position":3,"name":"CVE-2022-2293","item":"https://portal.vyprsec.ai/cves/CVE-2022-2293"}]}]}
Low severity3.5NVD Advisory· Published Jul 12, 2022· Updated Jun 17, 2026

CVE-2022-2293

CVE-2022-2293

Description

A vulnerability classified as problematic was found in SourceCodester Simple Sales Management System 1.0. Affected by this vulnerability is an unknown functionality of the file /ci_ssms/index.php/orders/create. The manipulation of the argument customer_name with the input leads to cross site scripting. The attack can be launched remotely. The exploit has been disclosed to the public and may be used.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2

Patches

Vulnerability mechanics

References

2

News mentions

0

No linked articles in our index yet.