Sourcecodetester
Products
1- 8 CVEs
Recent CVEs
8| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2021-43510 | 0.05 | — | 0.08 | Feb 1, 2022 | SQL Injection vulnerability exists in Sourcecodester Simple Client Management System 1.0 via the username field in login.php. | |||
| CVE-2021-43484 | 0.01 | — | 0.03 | Mar 31, 2022 | A Remote Code Execution (RCE) vulnerability exists in Simple Client Management System 1.0 in create.php due to the failure to validate the extension of the file being sent in a request. | |||
| CVE-2021-43657 | 0.00 | — | 0.01 | Dec 22, 2022 | A Stored Cross-site scripting (XSS) vulnerability via MAster.php in Sourcecodetester Simple Client Management System (SCMS) 1.0 allows remote attackers to inject arbitrary web script or HTML via the vulnerable input fields. | |||
| CVE-2022-29748 | 0.00 | — | 0.02 | May 12, 2022 | Simple Client Management System 1.0 is vulnerable to SQL Injection via \cms\admin?page=client/manage_client&id=. | |||
| CVE-2021-43506 | 0.00 | — | 0.02 | Mar 31, 2022 | An SQL Injection vulnerability exists in Sourcecodester Simple Client Management System 1.0 via the password parameter in Login.php. | |||
| CVE-2021-43505 | 0.00 | — | 0.01 | Mar 31, 2022 | Multiple Cross Site Scripting (XSS) vulnerabilities exist in Ssourcecodester Simple Client Management System v1 via (1) Add new Client and (2) Add new invoice. | |||
| CVE-2022-26284 | 0.00 | — | 0.02 | Mar 21, 2022 | Simple Client Management System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter in the manage_client endpoint. This vulnerability allows attackers to dump the application's database via crafted HTTP requests. | |||
| CVE-2021-43509 | 0.00 | — | 0.02 | Feb 1, 2022 | SQL Injection vulnerability exists in Sourcecodester Simple Client Management System 1.0 via the id parameter in view-service.php. |
- CVE-2021-43510Feb 1, 2022risk 0.05cvss —epss 0.08
SQL Injection vulnerability exists in Sourcecodester Simple Client Management System 1.0 via the username field in login.php.
- CVE-2021-43484Mar 31, 2022risk 0.01cvss —epss 0.03
A Remote Code Execution (RCE) vulnerability exists in Simple Client Management System 1.0 in create.php due to the failure to validate the extension of the file being sent in a request.
- CVE-2021-43657Dec 22, 2022risk 0.00cvss —epss 0.01
A Stored Cross-site scripting (XSS) vulnerability via MAster.php in Sourcecodetester Simple Client Management System (SCMS) 1.0 allows remote attackers to inject arbitrary web script or HTML via the vulnerable input fields.
- CVE-2022-29748May 12, 2022risk 0.00cvss —epss 0.02
Simple Client Management System 1.0 is vulnerable to SQL Injection via \cms\admin?page=client/manage_client&id=.
- CVE-2021-43506Mar 31, 2022risk 0.00cvss —epss 0.02
An SQL Injection vulnerability exists in Sourcecodester Simple Client Management System 1.0 via the password parameter in Login.php.
- CVE-2021-43505Mar 31, 2022risk 0.00cvss —epss 0.01
Multiple Cross Site Scripting (XSS) vulnerabilities exist in Ssourcecodester Simple Client Management System v1 via (1) Add new Client and (2) Add new invoice.
- CVE-2022-26284Mar 21, 2022risk 0.00cvss —epss 0.02
Simple Client Management System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter in the manage_client endpoint. This vulnerability allows attackers to dump the application's database via crafted HTTP requests.
- CVE-2021-43509Feb 1, 2022risk 0.00cvss —epss 0.02
SQL Injection vulnerability exists in Sourcecodester Simple Client Management System 1.0 via the id parameter in view-service.php.