cbcvebase.

Simple Task Managing System Project Simple Task Managing System vulnerabilities

8 known vulnerabilities affecting simple_task_managing_system_project/simple_task_managing_system.

Total CVEs
8
CISA KEV
0
Public exploits
1
Exploited in wild
0
Severity breakdown
CRITICAL3HIGH1MEDIUM4

Vulnerabilities

Page 1 of 1
CVE-2022-40032P2CRITICALCVSS 9.8PoCv1.02023-02-17
CVE-2022-40032 [CRITICAL] CWE-89 CVE-2022-40032: SQL Injection vulnerability in Simple Task Managing System version 1.0 in login.php in 'username' an SQL Injection vulnerability in Simple Task Managing System version 1.0 in login.php in 'username' and 'password' parameters, allows attackers to execute arbitrary code and gain sensitive information.
nvd
CVE-2022-3013P3CRITICALCVSS 9.8v1.02022-08-27
CVE-2022-3013 [CRITICAL] CWE-89 CVE-2022-3013: A vulnerability classified as critical has been found in SourceCodester Simple Task Managing System. A vulnerability classified as critical has been found in SourceCodester Simple Task Managing System. This affects an unknown part of the file /loginVaLidation.php. The manipulation of the argument login leads to sql injection. It is possible to initiate the attack remotely. The associated identifier of this vulnerability is VDB-207423.
nvd
CVE-2022-40030P3CRITICALCVSS 9.8v1.02022-09-21
CVE-2022-40030 [CRITICAL] CWE-89 CVE-2022-40030: SourceCodester Simple Task Managing System v1.0 was discovered to contain a SQL injection vulnerabil SourceCodester Simple Task Managing System v1.0 was discovered to contain a SQL injection vulnerability via the bookId parameter at changeStatus.php.
nvd
CVE-2022-40026P4HIGHCVSS 7.2v1.02022-09-21
CVE-2022-40026 [HIGH] CWE-89 CVE-2022-40026: SourceCodester Simple Task Managing System v1.0 was discovered to contain a SQL injection vulnerabil SourceCodester Simple Task Managing System v1.0 was discovered to contain a SQL injection vulnerability via the bookId parameter at board.php.
nvd
CVE-2022-3014P4MEDIUMCVSS 6.1v1.02022-08-27
CVE-2022-3014 [MEDIUM] CWE-79 CVE-2022-3014: A vulnerability classified as problematic was found in SourceCodester Simple Task Managing System. T A vulnerability classified as problematic was found in SourceCodester Simple Task Managing System. This vulnerability affects unknown code. The manipulation of the argument student_add leads to cross site scripting. The attack can be initiated remotely. The identifier of this vulnerability is VDB-207424.
nvd
CVE-2022-40027P4MEDIUMCVSS 6.1v1.02022-09-21
CVE-2022-40027 [MEDIUM] CWE-79 CVE-2022-40027: SourceCodester Simple Task Managing System v1.0 was discovered to contain a cross-site scripting (XS SourceCodester Simple Task Managing System v1.0 was discovered to contain a cross-site scripting (XSS) vulnerability via the component newTask.php. This vulnerability allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the shortName parameter.
nvd
CVE-2022-40029P4MEDIUMCVSS 4.8v1.02022-09-21
CVE-2022-40029 [MEDIUM] CWE-79 CVE-2022-40029: SourceCodester Simple Task Managing System v1.0 was discovered to contain a cross-site scripting (XS SourceCodester Simple Task Managing System v1.0 was discovered to contain a cross-site scripting (XSS) vulnerability via the component newProjectValidation.php. This vulnerability allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the shortName parameter.
nvd
CVE-2022-40028P4MEDIUMCVSS 4.8v1.02022-09-21
CVE-2022-40028 [MEDIUM] CWE-79 CVE-2022-40028: SourceCodester Simple Task Managing System v1.0 was discovered to contain a cross-site scripting (XS SourceCodester Simple Task Managing System v1.0 was discovered to contain a cross-site scripting (XSS) vulnerability via the component newProjectValidation.php. This vulnerability allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the fullName parameter.
nvd