Phone Shop Sales Managements System
CVEs (4)
| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2023-1275 | 0.00 | — | 0.01 | Mar 8, 2023 | A vulnerability classified as problematic was found in SourceCodester Phone Shop Sales Managements System 1.0. This vulnerability affects unknown code of the file /osms/assets/plugins/jquery-validation-1.11.1/demo/captcha/index.php of the component CAPTCHA Handler. The… | |||
| CVE-2021-36623 | 0.00 | — | 0.02 | Aug 3, 2021 | Arbitrary File Upload in Sourcecodester Phone Shop Sales Management System 1.0 enables RCE. | |||
| CVE-2021-36624 | 0.00 | — | 0.03 | Jul 29, 2021 | Sourcecodester Phone Shop Sales Managements System version 1.0 suffers from a remote SQL injection vulnerability that allows for authentication bypass. | |||
| CVE-2021-35337 | 0.00 | — | 0.01 | Jul 1, 2021 | Sourcecodester Phone Shop Sales Managements System 1.0 is vulnerable to Insecure Direct Object Reference (IDOR). Any attacker will be able to see the invoices of different users by changing the id parameter. |
- CVE-2023-1275Mar 8, 2023risk 0.00cvss —epss 0.01
A vulnerability classified as problematic was found in SourceCodester Phone Shop Sales Managements System 1.0. This vulnerability affects unknown code of the file /osms/assets/plugins/jquery-validation-1.11.1/demo/captcha/index.php of the component CAPTCHA Handler. The…
- CVE-2021-36623Aug 3, 2021risk 0.00cvss —epss 0.02
Arbitrary File Upload in Sourcecodester Phone Shop Sales Management System 1.0 enables RCE.
- CVE-2021-36624Jul 29, 2021risk 0.00cvss —epss 0.03
Sourcecodester Phone Shop Sales Managements System version 1.0 suffers from a remote SQL injection vulnerability that allows for authentication bypass.
- CVE-2021-35337Jul 1, 2021risk 0.00cvss —epss 0.01
Sourcecodester Phone Shop Sales Managements System 1.0 is vulnerable to Insecure Direct Object Reference (IDOR). Any attacker will be able to see the invoices of different users by changing the id parameter.