Product Show Room
CVEs (16)
| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2024-33302 | 0.00 | — | 0.00 | May 2, 2024 | SourceCodester Product Show Room 1.0 and before is vulnerable to Cross Site Scripting (XSS) via "Middle Name" under Add Users. | |||
| CVE-2024-33303 | 0.00 | — | 0.00 | May 2, 2024 | SourceCodester Product Show Room 1.0 is vulnerable to Cross Site Scripting (XSS) via "First Name" under Add Users. | |||
| CVE-2024-33304 | 0.00 | — | 0.00 | May 1, 2024 | SourceCodester Product Show Room 1.0 is vulnerable to Cross Site Scripting (XSS) via "Last Name" under Add Users. | |||
| CVE-2022-32415 | 0.00 | — | 0.00 | Jul 14, 2022 | Product Show Room Site v1.0 is vulnerable to SQL Injection via /psrs/?p=products/view_product&id=. | |||
| CVE-2022-32353 | 0.00 | — | 0.00 | Jun 14, 2022 | Product Show Room Site v1.0 is vulnerable to SQL Injection via /psrs/admin/categories/manage_field_order.php?id=. | |||
| CVE-2022-32354 | 0.00 | — | 0.00 | Jun 14, 2022 | Product Show Room Site v1.0 is vulnerable to SQL Injection via /psrs/admin/?page=user/manage_user&id=. | |||
| CVE-2022-32355 | 0.00 | — | 0.00 | Jun 14, 2022 | Product Show Room Site v1.0 is vulnerable to SQL Injection via /psrs/admin/?page=products/view_product&id=. | |||
| CVE-2022-32358 | 0.00 | — | 0.00 | Jun 14, 2022 | Product Show Room Site v1.0 is vulnerable to SQL Injection via /psrs/classes/Master.php?f=delete_inquiry. | |||
| CVE-2022-32359 | 0.00 | — | 0.00 | Jun 14, 2022 | Product Show Room Site v1.0 is vulnerable to SQL Injection via /psrs/classes/Master.php?f=delete_category. | |||
| CVE-2022-32362 | 0.00 | — | 0.00 | Jun 14, 2022 | Product Show Room Site v1.0 is vulnerable to SQL Injection via /psrs/admin/categories/manage_category.php?id=. | |||
| CVE-2022-32363 | 0.00 | — | 0.00 | Jun 14, 2022 | Product Show Room Site v1.0 is vulnerable to SQL Injection via /psrs/admin/categories/view_category.php?id=. | |||
| CVE-2022-32364 | 0.00 | — | 0.00 | Jun 14, 2022 | Product Show Room Site v1.0 is vulnerable to SQL Injection via /psrs/admin/?page=products/manage_product&id=. | |||
| CVE-2022-32365 | 0.00 | — | 0.00 | Jun 14, 2022 | Product Show Room Site v1.0 is vulnerable to SQL Injection via /psrs/admin/fields/manage_field.php?id=. | |||
| CVE-2022-32366 | 0.00 | — | 0.00 | Jun 14, 2022 | Product Show Room Site v1.0 is vulnerable to SQL Injection via /psrs/admin/fields/view_field.php?id=. | |||
| CVE-2022-1980 | 0.00 | — | 0.00 | Jun 2, 2022 | A vulnerability was found in SourceCodester Product Show Room Site 1.0. It has been rated as problematic. This issue affects the file /admin/?page=system_info/contact_info. The manipulation of the textbox Telephone with the input leads to cross site… | |||
| CVE-2022-1979 | 0.00 | — | 0.00 | Jun 2, 2022 | A vulnerability was found in SourceCodester Product Show Room Site 1.0. It has been declared as problematic. This vulnerability affects p=contact. The manipulation of the Message textbox with the input leads to cross site scripting. The attack can be… |
- CVE-2024-33302May 2, 2024risk 0.00cvss —epss 0.00
SourceCodester Product Show Room 1.0 and before is vulnerable to Cross Site Scripting (XSS) via "Middle Name" under Add Users.
- CVE-2024-33303May 2, 2024risk 0.00cvss —epss 0.00
SourceCodester Product Show Room 1.0 is vulnerable to Cross Site Scripting (XSS) via "First Name" under Add Users.
- CVE-2024-33304May 1, 2024risk 0.00cvss —epss 0.00
SourceCodester Product Show Room 1.0 is vulnerable to Cross Site Scripting (XSS) via "Last Name" under Add Users.
- CVE-2022-32415Jul 14, 2022risk 0.00cvss —epss 0.00
Product Show Room Site v1.0 is vulnerable to SQL Injection via /psrs/?p=products/view_product&id=.
- CVE-2022-32353Jun 14, 2022risk 0.00cvss —epss 0.00
Product Show Room Site v1.0 is vulnerable to SQL Injection via /psrs/admin/categories/manage_field_order.php?id=.
- CVE-2022-32354Jun 14, 2022risk 0.00cvss —epss 0.00
Product Show Room Site v1.0 is vulnerable to SQL Injection via /psrs/admin/?page=user/manage_user&id=.
- CVE-2022-32355Jun 14, 2022risk 0.00cvss —epss 0.00
Product Show Room Site v1.0 is vulnerable to SQL Injection via /psrs/admin/?page=products/view_product&id=.
- CVE-2022-32358Jun 14, 2022risk 0.00cvss —epss 0.00
Product Show Room Site v1.0 is vulnerable to SQL Injection via /psrs/classes/Master.php?f=delete_inquiry.
- CVE-2022-32359Jun 14, 2022risk 0.00cvss —epss 0.00
Product Show Room Site v1.0 is vulnerable to SQL Injection via /psrs/classes/Master.php?f=delete_category.
- CVE-2022-32362Jun 14, 2022risk 0.00cvss —epss 0.00
Product Show Room Site v1.0 is vulnerable to SQL Injection via /psrs/admin/categories/manage_category.php?id=.
- CVE-2022-32363Jun 14, 2022risk 0.00cvss —epss 0.00
Product Show Room Site v1.0 is vulnerable to SQL Injection via /psrs/admin/categories/view_category.php?id=.
- CVE-2022-32364Jun 14, 2022risk 0.00cvss —epss 0.00
Product Show Room Site v1.0 is vulnerable to SQL Injection via /psrs/admin/?page=products/manage_product&id=.
- CVE-2022-32365Jun 14, 2022risk 0.00cvss —epss 0.00
Product Show Room Site v1.0 is vulnerable to SQL Injection via /psrs/admin/fields/manage_field.php?id=.
- CVE-2022-32366Jun 14, 2022risk 0.00cvss —epss 0.00
Product Show Room Site v1.0 is vulnerable to SQL Injection via /psrs/admin/fields/view_field.php?id=.
- CVE-2022-1980Jun 2, 2022risk 0.00cvss —epss 0.00
A vulnerability was found in SourceCodester Product Show Room Site 1.0. It has been rated as problematic. This issue affects the file /admin/?page=system_info/contact_info. The manipulation of the textbox Telephone with the input leads to cross site…
- CVE-2022-1979Jun 2, 2022risk 0.00cvss —epss 0.00
A vulnerability was found in SourceCodester Product Show Room Site 1.0. It has been declared as problematic. This vulnerability affects p=contact. The manipulation of the Message textbox with the input leads to cross site scripting. The attack can be…