VYPR
Vendor

Daily Expense Manager

Products
1
CVEs
4
Across products
4
Status
Private

Products

1

Recent CVEs

4
  • CVE-2025-40731CriJun 30, 2025
    risk 0.64cvss 9.8epss 0.00

    SQL injection vulnerability in Daily Expense Manager v1.0. This vulnerability allows an attacker to retrieve, create, update and delete databases through the pname, pprice and id parameters in /update.php.

  • CVE-2025-40732HigJun 30, 2025
    risk 0.49cvss 7.5epss 0.00

    user enumeration vulnerability in Daily Expense Manager v1.0. To exploit this vulnerability a POST request must be sent using the name parameter in /check.php

  • CVE-2025-40734MedJun 30, 2025
    risk 0.40cvss 6.1epss 0.00

    Reflected Cross-Site Scripting (XSS) vulnerability in Daily Expense Manager v1.0. This vulnerability allows an attacker to execute JavaScript code by sending a POST request through the password and confirm_password parameters in /register.php.

  • CVE-2025-40733MedJun 30, 2025
    risk 0.40cvss 6.1epss 0.00

    Reflected Cross-Site Scripting (XSS) vulnerability in Daily Expense Manager v1.0. This vulnerability allows an attacker to execute JavaScript code by sending a POST request through the username parameter in /login.php.