VYPR

Vendor CVEs

Sourcecodester

All CVEs

1,696 total · sorted by risk
  • CVE-2022-2579Jul 29, 2022
    risk 0.00cvss epss 0.00

    A vulnerability, which was classified as problematic, was found in SourceCodester Garage Management System 1.0. Affected is an unknown function of the file /php_action/createUser.php. The manipulation of the argument userName with the input lala…

  • CVE-2022-2578Jul 29, 2022
    risk 0.00cvss epss 0.01

    A vulnerability, which was classified as critical, has been found in SourceCodester Garage Management System 1.0. This issue affects some unknown processing of the file /php_action/createUser.php. The manipulation leads to improper access controls. The attack may be initiated…

  • CVE-2022-2577Jul 29, 2022
    risk 0.00cvss epss 0.01

    A vulnerability classified as critical was found in SourceCodester Garage Management System 1.0. This vulnerability affects unknown code of the file /edituser.php. The manipulation of the argument id with the input -2'%20UNION%20select%2011,user(),333,444--+ leads to sql…

  • CVE-2022-2492Jul 20, 2022
    risk 0.00cvss epss 0.01

    A vulnerability was found in SourceCodester Library Management System 1.0 and classified as critical. This issue affects some unknown processing of the file /index.php. The manipulation of the argument RollNo with the input admin' AND (SELECT 2625 FROM (SELECT(SLEEP(5)))MdIL)…

  • CVE-2022-2491Jul 20, 2022
    risk 0.00cvss epss 0.01

    A vulnerability has been found in SourceCodester Library Management System 1.0 and classified as critical. This vulnerability affects unknown code of the file lab.php. The manipulation of the argument Section with the input 1' UNION ALL SELECT…

  • CVE-2022-2468Jul 19, 2022
    risk 0.00cvss epss 0.01

    A vulnerability was found in SourceCodester Garage Management System 1.0 and classified as critical. This issue affects some unknown processing of the file /editbrand.php. The manipulation of the argument id leads to sql injection. The attack may be initiated remotely. The…

  • CVE-2020-35261Jul 15, 2022
    risk 0.00cvss epss 0.01

    Cross Site Scripting (XSS) vulnerability in sourcecodester Multi Restaurant Table Reservation System 1.0 via the Restaurant Name field to /dashboard/profile.php.

  • CVE-2020-36550Jul 15, 2022
    risk 0.00cvss epss 0.01

    Cross Site Scripting (XSS) vulnerability in sourcecodester Multi Restaurant Table Reservation System 1.0 via the Table Name field to /dashboard/table-list.php.

  • CVE-2020-36551Jul 15, 2022
    risk 0.00cvss epss 0.01

    Cross Site Scripting (XSS) vulnerability in sourcecodester Multi Restaurant Table Reservation System 1.0 via the Item Name field to /dashboard/menu-list.php.

  • CVE-2020-36552Jul 15, 2022
    risk 0.00cvss epss 0.01

    Cross Site Scripting (XSS) vulnerability in sourcecodester Multi Restaurant Table Reservation System 1.0 via the Made field to /dashboard/menu-list.php.

  • CVE-2020-36553Jul 15, 2022
    risk 0.00cvss epss 0.01

    Cross Site Scripting (XSS) vulnerability in sourcecodester Multi Restaurant Table Reservation System 1.0 via the Area(food_type) field to /dashboard/menu-list.php.

  • CVE-2022-32415Jul 14, 2022
    risk 0.00cvss epss 0.01

    Product Show Room Site v1.0 is vulnerable to SQL Injection via /psrs/?p=products/view_product&id=.

  • CVE-2022-2364Jul 12, 2022
    risk 0.00cvss epss 0.01

    A vulnerability, which was classified as problematic, was found in SourceCodester Simple Parking Management System 1.0. This affects an unknown part of the file /ci_spms/admin/category. The manipulation of the argument vehicle_type with the input ">…

  • CVE-2022-2363Jul 12, 2022
    risk 0.00cvss epss 0.01

    A vulnerability, which was classified as problematic, has been found in SourceCodester Simple Parking Management System 1.0. Affected by this issue is some unknown functionality of the file /ci_spms/admin/search/searching/. The manipulation of the argument search with the input…

  • CVE-2022-2298Jul 12, 2022
    risk 0.00cvss epss 0.01

    A vulnerability has been found in SourceCodester Clinics Patient Management System 2.0 and classified as critical. Affected by this vulnerability is an unknown functionality of the file /pms/index.php of the component Login Page. The manipulation of the argument user_name with…

  • CVE-2022-2293Jul 12, 2022
    risk 0.00cvss epss 0.01

    A vulnerability classified as problematic was found in SourceCodester Simple Sales Management System 1.0. Affected by this vulnerability is an unknown functionality of the file /ci_ssms/index.php/orders/create. The manipulation of the argument customer_name with the input…

  • CVE-2022-2292Jul 12, 2022
    risk 0.00cvss epss 0.01

    A vulnerability classified as problematic has been found in SourceCodester Hotel Management System 2.0. Affected is an unknown function of the file /ci_hms/massage_room/edit/1 of the component Room Edit Page. The manipulation of the argument massageroomDetails with the input…

  • CVE-2022-2291Jul 12, 2022
    risk 0.00cvss epss 0.01

    A vulnerability was found in SourceCodester Hotel Management System 2.0. It has been rated as problematic. This issue affects some unknown processing of the file /ci_hms/search of the component Search. The manipulation of the argument search with the input…

  • CVE-2022-33692Jul 11, 2022
    risk 0.00cvss epss 0.00

    Exposure of Sensitive Information in Messaging application prior to SMR Jul-2022 Release 1 allows local attacker to access imsi and iccid via log.

  • CVE-2022-31897Jun 29, 2022
    risk 0.00cvss epss 0.01

    SourceCodester Zoo Management System 1.0 is vulnerable to Cross Site Scripting (XSS) via public_html/register_visitor?msg=.

  • CVE-2022-2214Jun 27, 2022
    risk 0.00cvss epss 0.01

    A vulnerability was found in SourceCodester Library Management System 1.0. It has been rated as critical. Affected by this issue is some unknown functionality of the file /librarian/bookdetails.php. The manipulation of the argument id with the input ' AND (SELECT 9198 FROM…

  • CVE-2022-2213Jun 27, 2022
    risk 0.00cvss epss 0.01

    A vulnerability was found in SourceCodester Library Management System 1.0. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the file /admin/edit_admin_details.php?id=admin. The manipulation of the argument Name leads to cross…

  • CVE-2022-2212Jun 27, 2022
    risk 0.00cvss epss 0.01

    A vulnerability was found in SourceCodester Library Management System 1.0. It has been classified as critical. Affected is an unknown function of the component /card/index.php. The manipulation of the argument image leads to unrestricted upload. It is possible to launch the…

  • CVE-2021-46824Jun 23, 2022
    risk 0.00cvss epss 0.01

    Cross Site Scripting (XSS) vulnerability in sourcecodester School File Management System 1.0 via the Lastname parameter to the Update Account form in student_profile.php.

  • CVE-2021-29055Jun 23, 2022
    risk 0.00cvss epss 0.01

    Cross Site Scripting (XSS) vulnerability in sourcecodester School File Management System 1.0 via the Firtstname parameter to the Update Account form in student_profile.php.

  • CVE-2022-2087Jun 15, 2022
    risk 0.00cvss epss 0.01

    A vulnerability, which was classified as problematic, was found in SourceCodester Bank Management System 1.0. This affects the file /mnotice.php?id=2. The manipulation of the argument notice with the input leads to cross site scripting. It is possible…

  • CVE-2022-2086Jun 15, 2022
    risk 0.00cvss epss 0.19

    A vulnerability, which was classified as critical, has been found in SourceCodester Bank Management System 1.0. Affected by this issue is login.php. The manipulation of the argument password with the input 1'and 1=2 union select 1,sleep(10),3,4,5 --+ leads to sql injection. The…

  • CVE-2022-32353Jun 14, 2022
    risk 0.00cvss epss 0.01

    Product Show Room Site v1.0 is vulnerable to SQL Injection via /psrs/admin/categories/manage_field_order.php?id=.

  • CVE-2022-32354Jun 14, 2022
    risk 0.00cvss epss 0.01

    Product Show Room Site v1.0 is vulnerable to SQL Injection via /psrs/admin/?page=user/manage_user&id=.

  • CVE-2022-32355Jun 14, 2022
    risk 0.00cvss epss 0.01

    Product Show Room Site v1.0 is vulnerable to SQL Injection via /psrs/admin/?page=products/view_product&id=.

  • CVE-2022-32358Jun 14, 2022
    risk 0.00cvss epss 0.01

    Product Show Room Site v1.0 is vulnerable to SQL Injection via /psrs/classes/Master.php?f=delete_inquiry.

  • CVE-2022-32359Jun 14, 2022
    risk 0.00cvss epss 0.01

    Product Show Room Site v1.0 is vulnerable to SQL Injection via /psrs/classes/Master.php?f=delete_category.

  • CVE-2022-32362Jun 14, 2022
    risk 0.00cvss epss 0.01

    Product Show Room Site v1.0 is vulnerable to SQL Injection via /psrs/admin/categories/manage_category.php?id=.

  • CVE-2022-32363Jun 14, 2022
    risk 0.00cvss epss 0.01

    Product Show Room Site v1.0 is vulnerable to SQL Injection via /psrs/admin/categories/view_category.php?id=.

  • CVE-2022-32364Jun 14, 2022
    risk 0.00cvss epss 0.01

    Product Show Room Site v1.0 is vulnerable to SQL Injection via /psrs/admin/?page=products/manage_product&id=.

  • CVE-2022-32365Jun 14, 2022
    risk 0.00cvss epss 0.01

    Product Show Room Site v1.0 is vulnerable to SQL Injection via /psrs/admin/fields/manage_field.php?id=.

  • CVE-2022-32366Jun 14, 2022
    risk 0.00cvss epss 0.01

    Product Show Room Site v1.0 is vulnerable to SQL Injection via /psrs/admin/fields/view_field.php?id=.

  • CVE-2022-32337Jun 14, 2022
    risk 0.00cvss epss 0.01

    Hospital's Patient Records Management System v1.0 is vulnerable to SQL Injection via /hprms/admin/patients/manage_patient.php?id=.

  • CVE-2022-32338Jun 14, 2022
    risk 0.00cvss epss 0.01

    Hospital's Patient Records Management System v1.0 is vulnerable to SQL Injection via /hprms/admin/doctors/manage_doctor.php?id=.

  • CVE-2022-32342Jun 14, 2022
    risk 0.00cvss epss 0.01

    Hospital's Patient Records Management System v1.0 is vulnerable to SQL Injection via /hprms/admin/room_types/view_room_type.php?id=.

  • CVE-2022-32343Jun 14, 2022
    risk 0.00cvss epss 0.01

    Hospital's Patient Records Management System v1.0 is vulnerable to SQL Injection via hprms/admin/room_types/manage_room_type.php?id=.

  • CVE-2022-32344Jun 14, 2022
    risk 0.00cvss epss 0.01

    Hospital's Patient Records Management System v1.0 is vulnerable to SQL Injection via /hprms/classes/Master.php?f=delete_patient.

  • CVE-2022-32346Jun 14, 2022
    risk 0.00cvss epss 0.01

    Hospital's Patient Records Management System v1.0 is vulnerable to SQL Injection via /hprms/admin/rooms/view_room.php?id=.

  • CVE-2022-32350Jun 14, 2022
    risk 0.00cvss epss 0.01

    Hospital's Patient Records Management System v1.0 is vulnerable to SQL Injection via /hprms/classes/Master.php?f=delete_room_type.

  • CVE-2022-32351Jun 14, 2022
    risk 0.00cvss epss 0.01

    Hospital's Patient Records Management System v1.0 is vulnerable to SQL Injection via /hprms/classes/Master.php?f=delete_message.

  • CVE-2022-32352Jun 14, 2022
    risk 0.00cvss epss 0.01

    Hospital's Patient Records Management System v1.0 is vulnerable to SQL Injection via /hprms/classes/Master.php?f=delete_patient_admission.

  • CVE-2021-44582Jun 10, 2022
    risk 0.00cvss epss 0.01

    A Privilege Escalation vulnerability exists in Sourcecodester Money Transfer Management System 1.0, which allows a remote malicious user to gain elevated privileges to the Admin role via any URL.

  • CVE-2022-2020Jun 7, 2022
    risk 0.00cvss epss 0.01

    A vulnerability, which was classified as problematic, has been found in SourceCodester Prison Management System 1.0. Affected by this issue is some unknown functionality of the file /admin/?page=system_info of the component System Name Handler. The manipulation with the input…

  • CVE-2022-2019Jun 7, 2022
    risk 0.00cvss epss 0.01

    A vulnerability classified as critical was found in SourceCodester Prison Management System 1.0. Affected by this vulnerability is an unknown functionality of the file /classes/Users.php?f=save of the component New User Creation. The manipulation leads to improper authorization.…

  • CVE-2022-2018Jun 7, 2022
    risk 0.00cvss epss 0.01

    A vulnerability classified as critical has been found in SourceCodester Prison Management System 1.0. Affected is an unknown function of the file /admin/?page=inmates/view_inmate of the component Inmate Handler. The manipulation of the argument id with the input…