Daily Tracker System Project Daily Tracker System vulnerabilities
2 known vulnerabilities affecting daily_tracker_system_project/daily_tracker_system.
Total CVEs
2
CISA KEV
0
Public exploits
1
Exploited in wild
0
Severity breakdown
CRITICAL1MEDIUM1
Vulnerabilities
Page 1 of 1
CVE-2020-24193P2CRITICALCVSS 9.8PoCv1.02020-09-03
CVE-2020-24193 [CRITICAL] CWE-89 CVE-2020-24193: A SQL injection vulnerability in login in Sourcecodetester Daily Tracker System 1.0 allows unauthent
A SQL injection vulnerability in login in Sourcecodetester Daily Tracker System 1.0 allows unauthenticated user to execute authentication bypass with SQL injection via the email parameter.
nvd
CVE-2020-24194P4MEDIUMCVSS 6.1v1.02020-09-09
CVE-2020-24194 [MEDIUM] CWE-79 CVE-2020-24194: A Cross-site scripting (XSS) vulnerability in 'user-profile.php' in SourceCodester Daily Tracker Sys
A Cross-site scripting (XSS) vulnerability in 'user-profile.php' in SourceCodester Daily Tracker System v1.0 allows remote attackers to inject arbitrary web script or HTML via the 'fullname' parameter.
nvd