BurakSevben

7 exploits Active since Jan 2024
CVE-2024-24134 NOMISEC MEDIUM WRITEUP
Sourcecodester Online Food Menu 1.0 - Stored Cross-Site Scripting via Menu Name and Description Fields
Sourcecodester Online Food Menu 1.0 is vulnerable to Cross Site Scripting (XSS) via the 'Menu Name' and 'Description' fields in the Update Menu section.
CVSS 4.8
CVE-2024-24135 NOMISEC MEDIUM WRITEUP
Product Inventory with Export to Excel 1.0 - Stored Cross-Site Scripting in Product Name and Code
Product Name and Product Code in the 'Add Product' section of Sourcecodester Product Inventory with Export to Excel 1.0 are vulnerable to XSS attacks.
CVSS 6.1
CVE-2024-24136 NOMISEC MEDIUM WRITEUP
Sourcecodester Math Game with Leaderboard 1.0 - Stored Cross-Site Scripting via Your Name Field
The 'Your Name' field in the Submit Score section of Sourcecodester Math Game with Leaderboard v1.0 is vulnerable to Cross-Site Scripting (XSS) attacks.
CVSS 6.1
CVE-2024-24139 NOMISEC HIGH WRITEUP
Login System with Email Verification 1.0 - SQL Injection via User Parameter
Sourcecodester Login System with Email Verification 1.0 allows SQL Injection via the 'user' parameter.
CVSS 7.2
CVE-2024-24140 NOMISEC HIGH WRITEUP
Daily Habit Tracker App 1.0 - SQL Injection via Tracker Parameter
Sourcecodester Daily Habit Tracker App 1.0 allows SQL Injection via the parameter 'tracker.'
CVSS 7.2
CVE-2024-24141 NOMISEC CRITICAL WRITEUP
Sourcecodester School Task Manager App 1.0 - SQL Injection via Task Parameter
Sourcecodester School Task Manager App 1.0 allows SQL Injection via the 'task' parameter.
CVSS 9.8
CVE-2024-24142 NOMISEC CRITICAL WRITEUP
Sourcecodester School Task Manager 1.0 - SQL Injection via Subject Parameter
Sourcecodester School Task Manager 1.0 allows SQL Injection via the 'subject' parameter.
CVSS 9.8