Murasaki

3 exploits Active since Feb 2023
CVE-2023-0988 WRITEUP MEDIUM WORKING POC
Online Pizza Ordering System - CSRF
A vulnerability, which was classified as problematic, has been found in SourceCodester Online Pizza Ordering System 1.0. This issue affects some unknown processing of the file admin/ajax.php?action=save_user. The manipulation leads to cross-site request forgery. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used. The identifier VDB-221681 was assigned to this vulnerability.
CVSS 4.3
CVE-2023-26905 WRITEUP CRITICAL WRITEUP
Alphaware Simple E-Commerce System <1.0 - SQL Injection
An issue was discovered in Alphaware - Simple E-Commerce System v1.0. There is a SQL injection that can directly issue instructions to the background database system via /alphaware/details.php?id.
CVSS 9.8
CVE-2024-1018 WRITEUP LOW WRITEUP
Pbootcms - XSS
A vulnerability classified as problematic has been found in PbootCMS 3.2.5-20230421. Affected is an unknown function of the file /admin.php?p=/Area/index#tab=t2. The manipulation of the argument name leads to cross site scripting. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used. The identifier of this vulnerability is VDB-252288.
CVSS 2.4