Sourcecodester Online Computer And Laptop Store vulnerabilities

30 known vulnerabilities affecting sourcecodester/online_computer_and_laptop_store.

Total CVEs

30

CISA KEV

0

Public exploits

1

Exploited in wild

0

Severity breakdown

CRITICAL12HIGH10MEDIUM8

Vulnerabilities

Page 2 of 2

CVE-2023-1959HIGHCVSS 8.8v1.02023-04-08

CVE-2023-1959 [MEDIUM] CWE-89 CVE-2023-1959: A vulnerability has been found in SourceCodester Online Computer and Laptop Store 1.0 and classified A vulnerability has been found in SourceCodester Online Computer and Laptop Store 1.0 and classified as critical. This vulnerability affects unknown code of the file /classes/Master.php?f=save_category. The manipulation of the argument category leads to sql injection. The attack can be initiated remotely. The exploit has been disclosed to the public an

CVE-2023-1954HIGHCVSS 8.8v1.02023-04-08

CVE-2023-1954 [MEDIUM] CWE-89 CVE-2023-1954: A vulnerability was found in SourceCodester Online Computer and Laptop Store 1.0. It has been rated A vulnerability was found in SourceCodester Online Computer and Laptop Store 1.0. It has been rated as critical. This issue affects the function save_inventory of the file /admin/product/manage.php. The manipulation of the argument id leads to sql injection. The attack may be initiated remotely. The exploit has been disclosed to the public and may be us

CVE-2023-1953HIGHCVSS 8.8v1.02023-04-08

CVE-2023-1953 [MEDIUM] CWE-89 CVE-2023-1953: A vulnerability was found in SourceCodester Online Computer and Laptop Store 1.0. It has been declar A vulnerability was found in SourceCodester Online Computer and Laptop Store 1.0. It has been declared as critical. This vulnerability affects unknown code of the file /admin/sales/index.php. The manipulation of the argument date_start/date_end leads to sql injection. The attack can be initiated remotely. The exploit has been disclosed to the public an

CVE-2023-1957HIGHCVSS 8.8v1.02023-04-08

CVE-2023-1957 [MEDIUM] CWE-89 CVE-2023-1957: A vulnerability, which was classified as critical, has been found in SourceCodester Online Computer A vulnerability, which was classified as critical, has been found in SourceCodester Online Computer and Laptop Store 1.0. Affected by this issue is some unknown functionality of the file /classes/Master.php?f=save_sub_category of the component Subcategory Handler. The manipulation of the argument sub_category leads to sql injection. The attack may be la

CVE-2023-1956HIGHCVSS 8.8v1.02023-04-08

CVE-2023-1956 [MEDIUM] CWE-22 CVE-2023-1956: A vulnerability classified as critical was found in SourceCodester Online Computer and Laptop Store A vulnerability classified as critical was found in SourceCodester Online Computer and Laptop Store 1.0. Affected by this vulnerability is an unknown functionality of the file /classes/Master.php?f=delete_img of the component Image Handler. The manipulation of the argument path leads to path traversal. The attack can be launched remotely. The exploit ha

CVE-2023-1960HIGHCVSS 8.8v1.02023-04-08

CVE-2023-1960 [MEDIUM] CWE-89 CVE-2023-1960: A vulnerability was found in SourceCodester Online Computer and Laptop Store 1.0 and classified as c A vulnerability was found in SourceCodester Online Computer and Laptop Store 1.0 and classified as critical. This issue affects some unknown processing of the file /classes/Master.php?f=delete_category. The manipulation of the argument id leads to sql injection. The attack may be initiated remotely. The exploit has been disclosed to the public and may

CVE-2023-1961MEDIUMCVSS 6.1v1.02023-04-08

CVE-2023-1961 [LOW] CWE-79 CVE-2023-1961: A vulnerability was found in SourceCodester Online Computer and Laptop Store 1.0. It has been classi A vulnerability was found in SourceCodester Online Computer and Laptop Store 1.0. It has been classified as problematic. Affected is an unknown function of the file /admin/?page=system_info. The manipulation of the argument System Name leads to cross site scripting. It is possible to launch the attack remotely. The exploit has been disclosed to the public

CVE-2023-1942CRITICALCVSS 9.8v1.02023-04-07

CVE-2023-1942 [MEDIUM] CWE-434 CVE-2023-1942: A vulnerability has been found in SourceCodester Online Computer and Laptop Store 1.0 and classified A vulnerability has been found in SourceCodester Online Computer and Laptop Store 1.0 and classified as critical. Affected by this vulnerability is an unknown functionality of the file /admin/?page=user of the component Avatar Handler. The manipulation leads to unrestricted upload. The attack can be launched remotely. The exploit has been disclosed to

CVE-2023-1857MEDIUMCVSS 6.1v1.02023-04-05

CVE-2023-1857 [LOW] CWE-79 CVE-2023-1857: A vulnerability was found in SourceCodester Online Computer and Laptop Store 1.0 and classified as p A vulnerability was found in SourceCodester Online Computer and Laptop Store 1.0 and classified as problematic. Affected by this issue is some unknown functionality of the file /admin/?page=product/manage_product&id=2. The manipulation of the argument Product Name leads to cross site scripting. The attack may be launched remotely. The exploit has been dis

CVE-2023-1826CRITICALCVSS 9.8PoCv1.02023-04-04

CVE-2023-1826 [MEDIUM] CWE-434 CVE-2023-1826: A vulnerability, which was classified as critical, was found in SourceCodester Online Computer and L A vulnerability, which was classified as critical, was found in SourceCodester Online Computer and Laptop Store 1.0. This affects an unknown part of the file php-ocls\admin\system_info\index.php. The manipulation of the argument img leads to unrestricted upload. It is possible to initiate the attack remotely. The identifier VDB-224841 was assigned to

← Previous2 / 2