Banking System
by Oretnom23
CVEs (4)
| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2025-11608 | Hig | 0.47 | 7.3 | 0.00 | Oct 11, 2025 | A security vulnerability has been detected in code-projects E-Banking System 1.0. This affects an unknown function of the file /register.php of the component POST Parameter Handler. The manipulation of the argument username/password leads to sql injection. It is possible to… | ||
| CVE-2025-14221 | Low | 0.23 | 3.5 | 0.00 | Dec 8, 2025 | A vulnerability was detected in SourceCodester Online Banking System 1.0. This impacts an unknown function of the file /?page=user. The manipulation of the argument First Name/Last Name results in cross site scripting. The attack can be launched remotely. The exploit is now… | ||
| CVE-2022-28116 | 0.00 | — | 0.01 | Apr 5, 2022 | Online Banking System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter. | |||
| CVE-2021-41659 | 0.00 | — | 0.01 | Jan 24, 2022 | SQL injection vulnerability in Sourcecodester Banking System v1 by oretnom23, allows attackers to execute arbitrary SQL commands via the username or password field. |
- risk 0.47cvss 7.3epss 0.00
A security vulnerability has been detected in code-projects E-Banking System 1.0. This affects an unknown function of the file /register.php of the component POST Parameter Handler. The manipulation of the argument username/password leads to sql injection. It is possible to…
- risk 0.23cvss 3.5epss 0.00
A vulnerability was detected in SourceCodester Online Banking System 1.0. This impacts an unknown function of the file /?page=user. The manipulation of the argument First Name/Last Name results in cross site scripting. The attack can be launched remotely. The exploit is now…
- CVE-2022-28116Apr 5, 2022risk 0.00cvss —epss 0.01
Online Banking System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter.
- CVE-2021-41659Jan 24, 2022risk 0.00cvss —epss 0.01
SQL injection vulnerability in Sourcecodester Banking System v1 by oretnom23, allows attackers to execute arbitrary SQL commands via the username or password field.