CVE-2022-40199 An attacker with administrative privileges can obtain the product's directory structure.
This can potentially lead to the disclosure of sensitive information, such as usernames and password hash values. An attacker can exploit this vulnerability to gain
CVE-2022-41570 An issue was discovered in EyesOfNetwork (EON) through 5.3.11
This issue has been resolved by upgrading to EON 5.3.12. An issue was discovered in EyesOfNetwork (EON) through 5.3.11. Unauthenticated SQL
CVE-2022-40098 The ID of the expense update system was found to be vulnerable to a SQL injection attack.
If exploited, this would allow an attacker to execute arbitrary SQL commands against the application.
On July 14th 2018, it was discovered that The official
CVE-2022-40099 The id parameter of the TOURES Management System v1.0 was found to be vulnerable to SQL injection.
An attacker can exploit this vulnerability to inject arbitrary SQL queries into the affected system and obtain sensitive information or even execute arbitrary code.
An
CVE-2022-30003 The 1.0 version of Codester Online Market Place is vulnerable to XSS, allowing attackers to register as a seller and create products with XSS payloads in the Product Title and Short Description fields.
In addition, the CodeNSCodester 1.0 site was tested for a variety of security issues - including Insecure Direct Object References, Incorrect Access Control ( allowing
Episode
00:00:00
00:00:00