Xcode0x (Mohamed Almarri) - Security Researcher - Exploit Intelligence Platform

CVE-2023-44047 WRITEUP HIGH WRITEUP

Sourcecodester Toll Tax Management System v1 - SQL Injection

Sourcecodester Toll Tax Management System v1 is vulnerable to SQL Injection.

CVSS 7.2

View Code

CVE-2023-44047 WRITEUP HIGH WRITEUP

Sourcecodester Toll Tax Management System v1 - SQL Injection

Sourcecodester Toll Tax Management System v1 is vulnerable to SQL Injection.

CVSS 7.2

View Code

CVE-2023-44048 WRITEUP MEDIUM WORKING POC

Sourcecodester Expense Tracker App v1 - XSS

Sourcecodester Expense Tracker App v1 is vulnerable to Cross Site Scripting (XSS) via add category.

CVSS 5.4

View Code

CVE-2023-44048 WRITEUP MEDIUM WRITEUP

Sourcecodester Expense Tracker App v1 - XSS

Sourcecodester Expense Tracker App v1 is vulnerable to Cross Site Scripting (XSS) via add category.

CVSS 5.4

View Code

CVE-2023-5286 WRITEUP LOW WORKING POC

Oretnom23 Expense Tracker - XSS

A vulnerability, which was classified as problematic, has been found in SourceCodester Expense Tracker App v1. Affected by this issue is some unknown functionality of the file add_category.php of the component Category Handler. The manipulation of the argument category_name leads to cross site scripting. The attack may be launched remotely. The exploit has been disclosed to the public and may be used. VDB-240914 is the identifier assigned to this vulnerability.

CVSS 3.5

View Code