Oretnom23

Service Provider Management System

15 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
4.8

CVE-2024-6267

Exploit
  • EPSS 0.12%
  • Veröffentlicht 23.06.2024 06:15:09
  • Zuletzt bearbeitet 21.11.2024 09:49:18

A vulnerability classified as problematic was found in SourceCodester Service Provider Management System 1.0. Affected by this vulnerability is an unknown functionality of the file system_info/index.php of the component System Info Page. The manipula...

9.8

CVE-2023-43457

Exploit
  • EPSS 1.27%
  • Veröffentlicht 25.09.2023 21:15:16
  • Zuletzt bearbeitet 21.11.2024 08:24:06

An issue in Service Provider Management System v.1.0 allows a remote attacker to gain privileges via the ID parameter in the /php-spms/admin/?page=user/ endpoint.

5.4

CVE-2023-43456

Exploit
  • EPSS 0.84%
  • Veröffentlicht 25.09.2023 15:15:10
  • Zuletzt bearbeitet 21.11.2024 08:24:06

Cross Site Scripting vulnerability in Service Provider Management System v.1.0 allows a remote attacker to execute arbitrary code and obtain sensitive information via the firstname, middlename and lastname parameters in the /php-spms/admin/?page=user...

9.8

CVE-2023-3644

  • EPSS 0.04%
  • Veröffentlicht 12.07.2023 18:15:09
  • Zuletzt bearbeitet 21.11.2024 08:17:44

A vulnerability was found in SourceCodester Service Provider Management System 1.0. It has been declared as critical. This vulnerability affects unknown code of the file /classes/Master.php?f=save_inquiry. The manipulation of the argument id leads to...

9.8

CVE-2023-34581

Exploit
  • EPSS 0.24%
  • Veröffentlicht 12.06.2023 15:15:09
  • Zuletzt bearbeitet 21.11.2024 08:07:24

Sourcecodester Service Provider Management System v1.0 is vulnerable to SQL Injection via the ID parameter in /php-spms/?page=services/view&id=2

8.8

CVE-2023-3119

Exploit
  • EPSS 0.07%
  • Veröffentlicht 06.06.2023 11:15:10
  • Zuletzt bearbeitet 21.11.2024 08:16:30

A vulnerability, which was classified as critical, has been found in SourceCodester Service Provider Management System 1.0. Affected by this issue is some unknown functionality of the file view.php. The manipulation of the argument id leads to sql in...

7.2

CVE-2023-3120

Exploit
  • EPSS 0.07%
  • Veröffentlicht 06.06.2023 11:15:10
  • Zuletzt bearbeitet 21.11.2024 08:16:30

A vulnerability, which was classified as critical, was found in SourceCodester Service Provider Management System 1.0. This affects an unknown part of the file view_service.php. The manipulation of the argument id leads to sql injection. It is possib...

8.8

CVE-2023-2769

Exploit
  • EPSS 0.07%
  • Veröffentlicht 17.05.2023 18:15:09
  • Zuletzt bearbeitet 21.11.2024 07:59:15

A vulnerability classified as critical has been found in SourceCodester Service Provider Management System 1.0. This affects an unknown part of the file /classes/Master.php?f=delete_service. The manipulation of the argument id leads to sql injection....

5.4

CVE-2023-2349

Exploit
  • EPSS 0.09%
  • Veröffentlicht 27.04.2023 16:15:11
  • Zuletzt bearbeitet 21.11.2024 07:58:26

A vulnerability classified as problematic has been found in SourceCodester Service Provider Management System 1.0. Affected is an unknown function of the file /admin/index.php. The manipulation of the argument page leads to cross site scripting. It i...

5.4

CVE-2023-2350

Exploit
  • EPSS 0.09%
  • Veröffentlicht 27.04.2023 16:15:11
  • Zuletzt bearbeitet 21.11.2024 07:58:26

A vulnerability classified as problematic was found in SourceCodester Service Provider Management System 1.0. Affected by this vulnerability is an unknown functionality of the file /classes/Users.php. The manipulation of the argument id leads to cros...