CVE-2025-63709
- EPSS 0.06%
- Veröffentlicht 10.11.2025 00:00:00
- Zuletzt bearbeitet 01.12.2025 20:15:54
A Cross-Site Scripting (XSS) vulnerability exists in SourceCodester Simple To-Do List System 1.0 in the "Add Tasks" text input. An authenticated user can submit HTML/JavaScript that is not correctly sanitized or encoded on output. The injected script...
CVE-2025-10117
- EPSS 0.03%
- Veröffentlicht 09.09.2025 01:02:10
- Zuletzt bearbeitet 10.09.2025 16:43:43
A weakness has been identified in SourceCodester Simple To-Do List System 1.0. Impacted is an unknown function of the file /fetch_tasks.php of the component Add New Task. Executing manipulation with the input <script>alert('XSS')</script> can lead to...
CVE-2025-4248
- EPSS 0.2%
- Veröffentlicht 04.05.2025 06:15:14
- Zuletzt bearbeitet 13.05.2025 15:06:14
A vulnerability has been found in SourceCodester Simple To-Do List System 1.0 and classified as critical. Affected by this vulnerability is an unknown functionality of the file /complete_task.php. The manipulation of the argument ID leads to sql inje...
CVE-2025-4247
- EPSS 0.2%
- Veröffentlicht 04.05.2025 04:31:04
- Zuletzt bearbeitet 13.05.2025 15:06:12
A vulnerability, which was classified as critical, was found in SourceCodester Simple To-Do List System 1.0. Affected is an unknown function of the file /delete_task.php. The manipulation of the argument ID leads to sql injection. It is possible to l...