» 2023 » 2월

A vulnerability classified as critical has been found in SourceCodester Sales Tracker Management System 1.0. This affects an unknown part of the file admin/?page=user/manage_user of the component Edit User. The manipulation of the argument id leads to sql injection. It is possible to initiate the attack remotely. The associated identifier of this vulnerability is VDB-221679.

Source: CVE-2023-0986

CVE-2023-0987

Posted on 2023년 2월 24일2023년 2월 24일 by admin

CVE-2023-0987

A vulnerability classified as problematic was found in SourceCodester Online Pizza Ordering System 1.0. This vulnerability affects unknown code of the file index.php?page=checkout. The manipulation leads to cross site scripting. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used. The identifier of this vulnerability is VDB-221680.

Source: CVE-2023-0987

CVE-2023-0867

Posted on 2023년 2월 24일2023년 2월 24일 by admin

CVE-2023-0867

Multiple stored and reflected cross-site scripting vulnerabilities in webapp jsp pages in multiple versions of OpenNMS Meridian and Horizon could allow an attacker access to confidential session information.

Source: CVE-2023-0867

CVE-2023-0868

Posted on 2023년 2월 24일2023년 2월 24일 by admin

CVE-2023-0868

Reflected cross-site scripting in graph results in multiple versions of OpenNMS Meridian and Horizon could allow an attacker access to steal session cookies.

Source: CVE-2023-0868

CVE-2023-0869

Posted on 2023년 2월 24일2023년 2월 24일 by admin

CVE-2023-0869

Cross-site scripting in outage/list.htm in multiple versions of OpenNMS Meridian and Horizon allows an attacker access to confidential session information.

Source: CVE-2023-0869