Sourcecodester Complaint Management System vulnerabilities

5 known vulnerabilities affecting sourcecodester/complaint_management_system.

Total CVEs
5
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
CRITICAL1HIGH3MEDIUM1

Vulnerabilities

Page 1 of 1
CVE-2024-1875HIGHCVSS 8.8v1.02024-02-26
CVE-2024-1875 [MEDIUM] CWE-434 CVE-2024-1875: A vulnerability was found in SourceCodester Complaint Management System 1.0 and classified as critic A vulnerability was found in SourceCodester Complaint Management System 1.0 and classified as critical. This issue affects some unknown processing of the file users/register-complaint.php of the component Lodge Complaint Section. The manipulation leads to unrestricted upload. The attack may be initiated remotely. The exploit has been disclosed to the
cvelistv5nvd
CVE-2023-2243HIGHCVSS 8.8v1.02023-04-22
CVE-2023-2243 [MEDIUM] CWE-89 CVE-2023-2243: A vulnerability was found in SourceCodester Complaint Management System 1.0 and classified as critic A vulnerability was found in SourceCodester Complaint Management System 1.0 and classified as critical. Affected by this issue is some unknown functionality of the file users/registration.php of the component POST Parameter Handler. The manipulation of the argument fullname leads to sql injection. The attack may be launched remotely. The exploit has be
cvelistv5nvd
CVE-2023-2153MEDIUMCVSS 6.1v1.02023-04-18
CVE-2023-2153 [LOW] CWE-79 CVE-2023-2153: A vulnerability was found in SourceCodester Complaint Management System 1.0 and classified as proble A vulnerability was found in SourceCodester Complaint Management System 1.0 and classified as problematic. Affected by this issue is some unknown functionality of the file admin/assets/plugins/DataTables/examples/examples_support/editable_ajax.php of the component POST Parameter Handler. The manipulation of the argument value with the input 1>alert(666) l
cvelistv5nvd
CVE-2023-2089HIGHCVSS 8.8v1.02023-04-15
CVE-2023-2089 [MEDIUM] CWE-89 CVE-2023-2089: A vulnerability was found in SourceCodester Complaint Management System 1.0. It has been rated as cr A vulnerability was found in SourceCodester Complaint Management System 1.0. It has been rated as critical. This issue affects some unknown processing of the file /admin/userprofile.php of the component GET Parameter Handler. The manipulation of the argument uid leads to sql injection. The attack may be initiated remotely. The exploit has been disclose
cvelistv5nvd
CVE-2023-1984CRITICALCVSS 9.8v1.02023-04-11
CVE-2023-1984 [MEDIUM] CWE-89 CVE-2023-1984: A vulnerability classified as critical was found in SourceCodester Complaint Management System 1.0. A vulnerability classified as critical was found in SourceCodester Complaint Management System 1.0. This vulnerability affects unknown code of the file /users/check_availability.php of the component POST Parameter Handler. The manipulation of the argument email leads to sql injection. The attack can be initiated remotely. The exploit has been disclosed
cvelistv5nvd