Simple Barangay Management System
CVEs (8)
| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2025-44193 | 0.00 | — | 0.00 | Apr 30, 2025 | SourceCodester Simple Barangay Management System v1.0 has a SQL injection vulnerability in /barangay_management/admin/?page=view_complaint. | |||
| CVE-2025-44192 | 0.00 | — | 0.00 | Apr 30, 2025 | SourceCodester Simple Barangay Management System v1.0 has a SQL injection vulnerability in /barangay_management/admin/?page=view_clearance. | |||
| CVE-2025-44194 | 0.00 | — | 0.00 | Apr 30, 2025 | SourceCodester Simple Barangay Management System v1.0 has a SQL injection vulnerability in /barangay_management/admin/?page=view_household. | |||
| CVE-2024-6830 | 0.00 | — | 0.00 | Jul 17, 2024 | A vulnerability, which was classified as critical, was found in SourceCodester Simple Inventory Management System 1.0. Affected is an unknown function of the file action.php of the component Order Handler. The manipulation of the argument order_id leads to sql injection. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used. The identifier of this vulnerability is VDB-271812. | |||
| CVE-2023-1357 | 0.00 | — | 0.00 | Mar 12, 2023 | A vulnerability, which was classified as critical, has been found in SourceCodester Simple Bakery Shop Management System 1.0. Affected by this issue is some unknown functionality of the component Admin Login. The manipulation of the argument username/password with the input admin' or 1=1 -- leads to sql injection. The attack may be launched remotely. The exploit has been disclosed to the public and may be used. The identifier of this vulnerability is VDB-222860. | |||
| CVE-2022-2364 | 0.00 | — | 0.00 | Jul 12, 2022 | A vulnerability, which was classified as problematic, was found in SourceCodester Simple Parking Management System 1.0. This affects an unknown part of the file /ci_spms/admin/category. The manipulation of the argument vehicle_type with the input "> leads to cross site scripting. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used. | |||
| CVE-2022-2363 | 0.00 | — | 0.00 | Jul 12, 2022 | A vulnerability, which was classified as problematic, has been found in SourceCodester Simple Parking Management System 1.0. Affected by this issue is some unknown functionality of the file /ci_spms/admin/search/searching/. The manipulation of the argument search with the input "> leads to cross site scripting. The attack may be launched remotely. The exploit has been disclosed to the public and may be used. | |||
| CVE-2022-2293 | 0.00 | — | 0.00 | Jul 12, 2022 | A vulnerability classified as problematic was found in SourceCodester Simple Sales Management System 1.0. Affected by this vulnerability is an unknown functionality of the file /ci_ssms/index.php/orders/create. The manipulation of the argument customer_name with the input leads to cross site scripting. The attack can be launched remotely. The exploit has been disclosed to the public and may be used. |
- CVE-2025-44193Apr 30, 2025risk 0.00cvss —epss 0.00
SourceCodester Simple Barangay Management System v1.0 has a SQL injection vulnerability in /barangay_management/admin/?page=view_complaint.
- CVE-2025-44192Apr 30, 2025risk 0.00cvss —epss 0.00
SourceCodester Simple Barangay Management System v1.0 has a SQL injection vulnerability in /barangay_management/admin/?page=view_clearance.
- CVE-2025-44194Apr 30, 2025risk 0.00cvss —epss 0.00
SourceCodester Simple Barangay Management System v1.0 has a SQL injection vulnerability in /barangay_management/admin/?page=view_household.
- CVE-2024-6830Jul 17, 2024risk 0.00cvss —epss 0.00
A vulnerability, which was classified as critical, was found in SourceCodester Simple Inventory Management System 1.0. Affected is an unknown function of the file action.php of the component Order Handler. The manipulation of the argument order_id leads to sql injection. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used. The identifier of this vulnerability is VDB-271812.
- CVE-2023-1357Mar 12, 2023risk 0.00cvss —epss 0.00
A vulnerability, which was classified as critical, has been found in SourceCodester Simple Bakery Shop Management System 1.0. Affected by this issue is some unknown functionality of the component Admin Login. The manipulation of the argument username/password with the input admin' or 1=1 -- leads to sql injection. The attack may be launched remotely. The exploit has been disclosed to the public and may be used. The identifier of this vulnerability is VDB-222860.
- CVE-2022-2364Jul 12, 2022risk 0.00cvss —epss 0.00
A vulnerability, which was classified as problematic, was found in SourceCodester Simple Parking Management System 1.0. This affects an unknown part of the file /ci_spms/admin/category. The manipulation of the argument vehicle_type with the input "> leads to cross site scripting. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used.
- CVE-2022-2363Jul 12, 2022risk 0.00cvss —epss 0.00
A vulnerability, which was classified as problematic, has been found in SourceCodester Simple Parking Management System 1.0. Affected by this issue is some unknown functionality of the file /ci_spms/admin/search/searching/. The manipulation of the argument search with the input "> leads to cross site scripting. The attack may be launched remotely. The exploit has been disclosed to the public and may be used.
- CVE-2022-2293Jul 12, 2022risk 0.00cvss —epss 0.00
A vulnerability classified as problematic was found in SourceCodester Simple Sales Management System 1.0. Affected by this vulnerability is an unknown functionality of the file /ci_ssms/index.php/orders/create. The manipulation of the argument customer_name with the input leads to cross site scripting. The attack can be launched remotely. The exploit has been disclosed to the public and may be used.