Sourcecodester Vulnérabilités

Chronologie

Taper

Produit

SourceCodester Library Management System34
SourceCodester Prison Management System19
SourceCodester Baby Care System18
SourceCodester Attendance and Payroll System17
SourceCodester Garage Management System16

Contre-mesures

Official Fix2
Temporary Fix0
Workaround0
Unavailable0
Not Defined466

Exploitabilité

High0
Functional1
Proof-of-Concept253
Unproven0
Not Defined214

Vecteur d'accès

Not Defined0
Physical0
Local2
Adjacent14
Network452

Authentification

Not Defined0
High9
Low393
None66

Interaction de l'utilisateur

Not Defined0
Required131
None337

C3BM Index

CVSSv3 Base

≤10
≤20
≤35
≤469
≤562
≤621
≤7147
≤8143
≤921
≤100

CVSSv3 Temp

≤10
≤20
≤35
≤482
≤550
≤680
≤7118
≤8121
≤912
≤100

VulDB

≤10
≤20
≤35
≤4114
≤526
≤620
≤7260
≤843
≤90
≤100

NVD

≤10
≤20
≤30
≤40
≤58
≤626
≤724
≤89
≤959
≤1090

CNA

≤10
≤20
≤31
≤422
≤57
≤62
≤750
≤87
≤90
≤100

Fournisseur

≤10
≤20
≤30
≤40
≤50
≤60
≤70
≤80
≤90
≤100

Research

≤10
≤20
≤30
≤40
≤50
≤60
≤70
≤80
≤90
≤100

Exploiter 0 jour

<1k136
<2k232
<5k100
<10k0
<25k0
<50k0
<100k0
≥100k0

Exploiter aujourd'hui

<1k303
<2k165
<5k0
<10k0
<25k0
<50k0
<100k0
≥100k0

Exploiter le volume du marché

🔴 CTI Activités

Affected Products (169): Alphaware Simple E-Commerce System (2), Alumni Management System (6), Apartment Visitor Management System (4), Attendance Management System (2), Attendance and Payroll System (17), Automated Beer Parlour Billing System (1), Baby Care System (18), Bank Management System (2), Banking System (1), Basic Shopping Cart (1), Best Fee Management System (1), Book Store Management System (2), Booking System (1), Budget Management System (1), Budget and Expense Tracker System (2), COVID 19 Testing Management System (1), Car Rental Management System (2), Church Management System (2), Clinics Patient Management System (4), College Website Management System (1), Company Website CMS (9), Complaint Management System (1), Computer and Mobile Repair Shop Management System (1), Content Management System (1), Covid-19 Directory on Vaccination (1), Customer Relationship Management (2), Daily Tracker System (1), Doctor's Appointment System (1), Doctor Appointment System (1), Doctors Appointment System (1), E-Commerce Website (4), E-Negosyo System (2), Electric Billing Management System (1), Electronic Medical Records System (2), Employee Daily Task Management System (1), Employee Management System (4), Employee and Visitor Gate Pass Logging System (1), Engineers Online Portal (1), Engineers Online Portal in PHP (7), Equipment Inventory System (1), Expense Management System (1), Fantastic-Blog-CMS (1), Fantastic Blog CMS (1), Food Ordering Management System (1), Free School Management Software (1), Gadget Works Online Ordering System (1), Garage Management System (16), Gas Agency Management System (2), Guest Management System (4), Gym Management System (13), Hospital Patient Record Management System (1), Hospitals Patient Records Management System (1), Hotel (1), Hotel Management System (3), Hotel and Lodge Management System (1), House Rental and Property Listing (1), Human Resource Management System (9), Ingredient Stock Management System (2), Interview Management System (2), Invoice System (1), Learning Management System (1), Library Management System (34), Loan Management System (4), Lodge Management System (1), Lodging Reservation Management System (1), Logistic Hub Parcel's Management System (1), Management System (4), Medical Hub Directory Site (1), Messaging Web Application (1), Microfinance Management System (3), Mobile Shop System in PHP MySQL (1), Money Transfer Management System (1), Multi Language Hotel Management Software (2), Multi Restaurant Table Reservation System (6), News247 CMS (1), News247 News Magazine (1), One Church Management System (3), Online Admission System (4), Online Bike Rental (1), Online Bus Booking System (1), Online Catering Reservation System (1), Online Class and Exam Scheduling System (2), Online Clothing Store (3), Online Course Registration (2), Online Covid Vaccination Scheduler System (4), Online Diagnostic Lab Management System (5), Online Discussion Forum Site (3), Online Employee Leave Management System (1), Online Enrollment Management System in PHP (2), Online Event Booking and Reservation System (3), Online Food Ordering System (1), Online Grading System (2), Online Health Care System (1), Online Learning System (2), Online Leave Management System (1), Online Market Place Site (2), Online Payment Hub (1), Online Project Time Management System (3), Online Railway Reservation Sysytem (1), Online Resort Management System (1), Online Reviewer System (2), Online Shopping Alphaware (2), Online Student Admission System (1), Online Thesis Archiving System (1), OpenOlat (1), Ordering System (1), PHP CRUD Tutorial (1), Patient Appointment Scheduler System (1), Phone Shop Sales Management System (1), Phone Shop Sales Managements System (3), Pisay Online E-Learning System (1), Prison Management System (19), Product Show Room Site (2), Purchase Order Management System (5), Rescue Dispatch Management System (2), Responsive Online Blog (1), Responsive Ordering System (1), Royale Event Management System (2), SCBS Online Sports Venue Reservation System (2), Sales and Inventory System (1), Sanitization Management System (4), School Dormitory Management System (5), School File Management System (2), Seat Reservation System (2), Simple Cashiering System (1), Simple Chatbot Application (2), Simple Client Management System (5), Simple Cold Storage Management System (1), Simple College Website (2), Simple E-Learning System (9), Simple Food Ordering System (1), Simple Food Website (2), Simple Grocery Store Sales and Inventory System (1), Simple Library Management System (2), Simple Membership System (1), Simple Music Clour Community System (1), Simple Online Book Store (1), Simple Online Book Store System (5), Simple Online Public Access Catalog (1), Simple Parking Management System (2), Simple Sales Management System (1), Simple Social Networking Site (4), Simple Student Information System (2), Simple Subscription Website (4), Simple Task Managing System (7), Simple Water Refilling Station Management System (2), Simple and Nice Shopping Cart Script (3), Simple e-Learning System (1), South Gate Inn Online Reservation System (2), Stock Management System (4), Stock Management System in PHP OOP (1), Storage Unit Rental Management System (2), Student Attendance Management System (1), Student Information System (1), Student Management System (2), Student Quarterly Grading System (1), Student Result Management System (1), Tailor Management (1), Tailor Management System (1), Theme Park Ticketing System (2), Tourism Management System (2), Travel Management System (2), Try My Recipe (2), Vehicle Parking Management System (3), Vehicle Service Management System (14), Water Billing System (2), Web-Based Student Clearance System (3), Wedding Hall Booking System (4), Zoo Management System (4)

PubliéBaseTempVulnérabilitéProdExpConCTIEPSSCVE
15/10/20222.42.2SourceCodester Sanitization Management System Quote Requests Tab cross site scriptingInconnueProof-of-ConceptNot Defined1.50+0.00000CVE-2022-3519
15/10/20222.42.2SourceCodester Sanitization Management System User Creation cross site scriptingInconnueProof-of-ConceptNot Defined1.34+0.00000CVE-2022-3518
14/10/20223.53.2SourceCodester Sanitization Management System cross site scriptingInconnueProof-of-ConceptNot Defined1.700.00000CVE-2022-3505
14/10/20226.35.7SourceCodester Sanitization Management System sql injectionInconnueProof-of-ConceptNot Defined2.550.00000CVE-2022-3504
14/10/20223.53.2SourceCodester Purchase Order Management System Supplier cross site scriptingInconnueProof-of-ConceptNot Defined1.600.00000CVE-2022-3503
14/10/20226.36.1SourceCodester Online Diagnostic Lab Management System createOrder.php elévation de privilègesInconnueNot DefinedNot Defined1.070.02559CVE-2022-41534
14/10/20226.36.1SourceCodester Online Diagnostic Lab Management System editProductImage.php elévation de privilègesInconnueNot DefinedNot Defined1.110.02559CVE-2022-41533
13/10/20223.53.2SourceCodester Human Resource Management System Master List cross site scriptingInconnueProof-of-ConceptNot Defined1.600.00885CVE-2022-3497
13/10/20226.35.7SourceCodester Human Resource Management System Admin Panel employeeadd.php elévation de privilègesInconnueProof-of-ConceptNot Defined2.380.00885CVE-2022-3496
13/10/20227.36.6SourceCodester Simple Online Public Access Catalog Admin Login sql injectionInconnueProof-of-ConceptNot Defined1.800.00885CVE-2022-3495
13/10/20223.53.2SourceCodester Human Resource Management System Add Employee cross site scriptingInconnueProof-of-ConceptNot Defined1.400.00885CVE-2022-3493
13/10/20226.35.7SourceCodester Human Resource Management System Profile Photo elévation de privilègesInconnueProof-of-ConceptNot Defined1.630.01005CVE-2022-3492
12/10/20226.35.7SourceCodester Human Resource Management System getstatecity.php sql injectionInconnueProof-of-ConceptNot Defined1.040.00885CVE-2022-3473
12/10/20226.35.7SourceCodester Human Resource Management System city.php sql injectionInconnueProof-of-ConceptNot Defined1.270.00885CVE-2022-3472
12/10/20226.35.7SourceCodester Human Resource Management System city.php sql injectionInconnueProof-of-ConceptNot Defined1.240.00885CVE-2022-3471
12/10/20226.35.7SourceCodester Human Resource Management System getstatecity.php sql injectionInconnueProof-of-ConceptNot Defined0.720.00885CVE-2022-3470
11/10/20226.36.3SourceCodester Human Resource Management System Image File employeeview.php elévation de privilègesAsset Management SoftwareNot DefinedNot Defined0.980.00885CVE-2022-3458
11/10/20223.53.2SourceCodester Book Store Management System transcation.php cross site scriptingInconnueProof-of-ConceptNot Defined0.720.00885CVE-2022-3453
11/10/20223.53.2SourceCodester Book Store Management System category.php cross site scriptingInconnueProof-of-ConceptNot Defined0.720.00885CVE-2022-3452
09/10/20226.36.3SourceCodester Web-Based Student Clearance System Photo edit-photo.php elévation de privilègesInconnueProof-of-ConceptNot Defined0.690.00885CVE-2022-3436
08/10/20223.53.2SourceCodester Web-Based Student Clearance System add-student.php prepare cross site scriptingInconnueProof-of-ConceptNot Defined0.850.00885CVE-2022-3434
07/10/20226.36.1SourceCodester Simple E-Learning System classRoom.php sql injectionLearning Management SoftwareNot DefinedNot Defined0.060.00885CVE-2022-40872
07/10/20225.04.6SourceCodester Web-Based Student Clearance System POST Parameter login.php sql injectionInconnueProof-of-ConceptNot Defined0.850.00885CVE-2022-3414
30/09/20226.36.1SourceCodester Student Result Management System sql injectionInconnueNot DefinedNot Defined0.030.00885CVE-2022-40887
27/09/20223.53.4SourceCodester Online Market Place Site cross site scriptingInconnueNot DefinedNot Defined0.030.00885CVE-2022-30003

443 plus d'entrées ne sont pas affichées

Interested in the pricing of exploits?

See the underground prices here!