VYPR
Vendor

Expense Tracker

Products
1
CVEs
3
Across products
3
Status
Private

Products

1

Recent CVEs

3
  • CVE-2024-25211CriFeb 14, 2024
    risk 0.64cvss 9.8epss 0.01

    Simple Expense Tracker v1.0 was discovered to contain a SQL injection vulnerability via the category parameter at /endpoint/delete_category.php.

  • CVE-2024-25210CriFeb 14, 2024
    risk 0.64cvss 9.8epss 0.01

    Simple Expense Tracker v1.0 was discovered to contain a SQL injection vulnerability via the expense parameter at /endpoint/delete_expense.php.

  • CVE-2022-45033MedDec 15, 2022
    risk 0.35cvss 5.4epss 0.00

    A cross-site scripting (XSS) vulnerability in Expense Tracker 1.0 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Chat text field.