Latest Oretnom23 Vulnerabilities

CVE-2024-1031
CodeAstro Expense Management System Add Expenses Page 5-Add-Expenses.php cross site scripting
Oretnom23 Expense Management System=1.0
CVE-2024-1028
SourceCodester Facebook News Feed Like Post cross site scripting
=1.0
CVE-2024-1027
SourceCodester Facebook News Feed Like Post unrestricted upload
Oretnom23 Facebook News Feed Like=1.0
CVE-2024-1024
SourceCodester Facebook News Feed Like New Account cross site scripting
=1.0
CVE-2024-0650
Project Worlds Visitor Management System URL dataset.php cross site scripting
Oretnom23 Visitor Management System=1.0
CVE-2024-22628
Budget and Expense Tracker System v1.0 is vulnerable to SQL Injection via /expense_budget/admin/?page=reports/budget&date_start=2023-12-28&date_end=
Oretnom23 Budget And Expense Tracker System=1.0
CVE-2024-0502
SourceCodester House Rental Management System Edit User manage_user.php sql injection
Oretnom23 House Rental Management System=1.0
CVE-2024-0501
SourceCodester House Rental Management System Manage Invoice Details cross site scripting
Oretnom23 House Rental Management System=1.0
CVE-2024-0500
SourceCodester House Rental Management System Manage Tenant Details cross site scripting
Oretnom23 House Rental Management System=1.0
CVE-2024-0499
SourceCodester House Rental Management System index.php cross site scripting
Oretnom23 House Rental Management System=1.0
CVE-2023-30015
SQL Injection vulnerability in oretnom23 Judging Management System v1.0, allows remote attackers to execute arbitrary code and obtain sensitive information via txtsearch parameter in review_search.php...
oretnom23 Judging Management System=1.0
CVE-2023-30014
SQL Injection vulnerability in oretnom23 Judging Management System v1.0, allows remote attackers to execute arbitrary code and obtain sensitive information via sub_event_id parameter in sub_event_stat...
oretnom23 Judging Management System=1.0
CVE-2023-30016
SQL Injection vulnerability in oretnom23 Judging Management System v1.0, allows remote attackers to execute arbitrary code and obtain sensitive information via sub_event_id parameter in sub_event_deta...
oretnom23 Judging Management System=1.0
CVE-2024-0265
SourceCodester Clinic Queuing System GET Parameter index.php file inclusion
Oretnom23 Clinic Queuing System=1.0
CVE-2024-0264
SourceCodester Clinic Queuing System LoginRegistration.php authorization
Oretnom23 Clinic Queuing System=1.0
CVE-2023-50070
Sourcecodester Customer Support System 1.0 has multiple SQL injection vulnerabilities in /customer_support/ajax.php?action=save_ticket via department_id, customer_id, and subject.
=1.0
CVE-2023-7134
SourceCodester Medicine Tracking System path traversal
=1.0
CVE-2023-7058
SourceCodester Simple Student Attendance System path traversal
=1.0
CVE-2023-6896
SourceCodester Simple Image Stack Website cross site scripting
=1.0
CVE-2023-6771
SourceCodester Simple Student Attendance System actions.class.php save_attendance sql injection
=1.0
CVE-2023-6658
SourceCodester Simple Student Attendance System sql injection
=1.0
CVE-2023-6657
SourceCodester Simple Student Attendance System student_form.php sql injection
=1.0
CVE-2023-6650
SourceCodester Simple Invoice Generator System login.php cross site scripting
=1.0
CVE-2023-6619
SourceCodester Simple Student Attendance System class_form.php sql injection
=1.0
CVE-2023-6618
SourceCodester Simple Student Attendance System index.php file inclusion
=1.0
CVE-2023-6617
SourceCodester Simple Student Attendance System attendance.php sql injection
=1.0
CVE-2023-6616
SourceCodester Simple Student Attendance System index.php cross site scripting
=1.0
CVE-2023-46956
SQL injection vulnerability in Packers and Movers Management System v.1.0 allows a remote attacker to execute arbitrary code via crafted payload to the /mpms/admin/?page=user/manage_user&id file.
Oretnom23 Packers And Movers Management System=1.0
CVE-2023-38965
Lost and Found Information System 1.0 allows account takeover via username and password to a /classes/Users.php?f=save URI.
Oretnom23 Lost And Found Information System=1.0
CVE-2023-5814
SourceCodester Task Reminder System sql injection
=1.0
CVE-2023-5813
SourceCodester Task Reminder System sql injection
=1.0
CVE-2023-44824
An issue in Expense Management System v.1.0 allows a local attacker to execute arbitrary code via a crafted file uploaded to the sign-up.php component.
Oretnom23 Expense Management System=1.0
CVE-2023-5585
A vulnerability was found in SourceCodester Online Motorcycle Rental System 1.0. It has been declared as problematic. This vulnerability affects unknown code of the file /admin/?page=bike of the compo...
Oretnom23 Online Motorcycle \(bike\) Rental System=1.0
=1.0
CVE-2023-5581
A vulnerability classified as problematic was found in SourceCodester Medicine Tracker System 1.0. This vulnerability affects unknown code of the file index.php. The manipulation of the argument page ...
Oretnom23 Medicine Tracker System=1.0
=1.0
CVE-2023-5423
A vulnerability has been found in SourceCodester Online Pizza Ordering System 1.0 and classified as critical. This vulnerability affects unknown code of the file /admin/ajax.php?action=confirm_order. ...
Oretnom23 Online Pizza Ordering System=1.0
CVE-2023-5374
A vulnerability classified as critical was found in SourceCodester Online Computer and Laptop Store 1.0. Affected by this vulnerability is an unknown functionality of the file products.php. The manipu...
Oretnom23 Online Computer And Laptop Store=1.0
=1.0
CVE-2023-5373
A vulnerability classified as critical has been found in SourceCodester Online Computer and Laptop Store 1.0. Affected is the function register of the file Master.php. The manipulation of the argument...
Oretnom23 Online Computer And Laptop Store=1.0
=1.0
CVE-2023-5286
A vulnerability, which was classified as problematic, has been found in SourceCodester Expense Tracker App v1. Affected by this issue is some unknown functionality of the file add_category.php of the ...
Oretnom23 Expense Tracker=1.0
=1.0
CVE-2023-30415
Sourcecodester Packers and Movers Management System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /inquiries/view_inquiry.php.
Oretnom23 Packers And Movers Management System=1.0
CVE-2023-44048
Sourcecodester Expense Tracker App v1 is vulnerable to Cross Site Scripting (XSS) via add category.
Oretnom23 Expense Tracker=1.0
CVE-2023-43457
An issue in Service Provider Management System v.1.0 allows a remote attacker to gain privileges via the ID parameter in the /php-spms/admin/?page=user/ endpoint.
Oretnom23 Service Provider Management System=1.0
CVE-2023-43456
Cross Site Scripting vulnerability in Service Provider Management System v.1.0 allows a remote attacker to execute arbitrary code and obtain sensitive information via the firstname, middlename and las...
Oretnom23 Service Provider Management System=1.0
CVE-2023-5021
A vulnerability, which was classified as problematic, was found in SourceCodester AC Repair and Services System 1.0. Affected is an unknown function of the file admin/?page=system_info/contact_informa...
Oretnom23 Ac Repair And Services System=1.0
=1.0
CVE-2023-5018
A vulnerability classified as critical has been found in SourceCodester Lost and Found Information System 1.0. This affects an unknown part of the file /classes/Master.php?f=save_category of the compo...
Oretnom23 Lost And Found Information System=1.0
CVE-2023-36159
Cross Site Scripting (XSS) vulnerability in sourcecodester Lost and Found Information System 1.0 allows remote attackers to run arbitrary code via the First Name, Middle Name and Last Name fields on t...
Oretnom23 Lost And Found Information System=1.0
CVE-2023-3850
A vulnerability has been found in SourceCodester Lost and Found Information System 1.0 and classified as critical. Affected by this vulnerability is an unknown functionality of the file /classes/Maste...
Lost And Found Information System Project Lost And Found Information System=1.0
Oretnom23 Lost And Found Information System=1.0
=1.0
CVE-2023-3680
SourceCodester Lost and Found Information System HTTP POST Request sql injection
Oretnom23 Lost And Found Information System=1.0
=1.0
CVE-2023-3679
SourceCodester Lost and Found Information System HTTP POST Request sql injection
Oretnom23 Lost And Found Information System=1.0
=1.0
CVE-2023-3678
SourceCodester AC Repair and Services System HTTP POST Request sql injection
Oretnom23 Ac Repair And Services System=1.0
=1.0
CVE-2023-31704
Sourcecodester Online Computer and Laptop Store 1.0 is vulnerable to Incorrect Access Control, which allows remote attackers to elevate privileges to the administrator's role.
Online Computer And Laptop Store Project Online Computer And Laptop Store=1.0
Oretnom23 Online Computer And Laptop Store=1.0

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2024 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203