Janobe Young Entrepreneur E Negosyo System
Don't miss out!
Thousands of developers use stack.watch to stay informed.Get an email whenever new security vulnerabilities are reported in Janobe Young Entrepreneur E Negosyo System.
By the Year
In 2026 there have been 0 vulnerabilities in Janobe Young Entrepreneur E Negosyo System. Young Entrepreneur E Negosyo System did not have any published security vulnerabilities last year.
| Year | Vulnerabilities | Average Score |
|---|---|---|
| 2026 | 0 | 0.00 |
| 2025 | 0 | 0.00 |
| 2024 | 6 | 6.57 |
It may take a day or so for new Young Entrepreneur E Negosyo System vulnerabilities to show up in the stats or in the list of recent security vulnerabilities. Additionally vulnerabilities may be tagged under a different product or component name.
Recent Janobe Young Entrepreneur E Negosyo System Security Vulnerabilities
XSS in E-Negosyo System 1.0 via 'category' param
CVE-2024-33978
6.1 - Medium
- August 06, 2024
Cross-Site Scripting (XSS) vulnerability in E-Negosyo System affecting version 1.0. An attacker could create a specially crafted URL and send it to a victim to obtain their session cookie details via 'category' parameter in '/index.php'.
XSS
ENegosyo System 1.0 XSS via /admin/orders/index.php - view param
CVE-2024-33977
6.1 - Medium
- August 06, 2024
Cross-Site Scripting (XSS) vulnerability in E-Negosyo System affecting version 1.0. An attacker could create a specially crafted URL and send it to a victim to obtain their session cookie details via 'view' parameter in /admin/orders/index.php'.
XSS
E-Negosyo Sys v1.0 XSS via 'id' in /admin/user/index.php
CVE-2024-33976
6.1 - Medium
- August 06, 2024
Cross-Site Scripting (XSS) vulnerability in E-Negosyo System affecting version 1.0. An attacker could exploit this vulnerability by sending a specially crafted JavaScript payload to an authenticated user and partially take over their browser session via 'id' parameter in '/admin/user/index.php'.
XSS
XSS in E-Negosyo System 1.0 via /admin/products/index.php 'view' param
CVE-2024-33975
6.1 - Medium
- August 06, 2024
Cross-Site Scripting (XSS) vulnerability in E-Negosyo System affecting version 1.0. An attacker could exploit this vulnerability by sending a specially crafted JavaScript payload to an authenticated user and partially take over their browser session via 'view' parameter in '/admin/products/index.php'.
XSS
SQLi in E-Negosyo Sys 1.0 via /passwordrecover.php param
CVE-2024-33958
7.5 - High
- August 06, 2024
SQL injection vulnerability in E-Negosyo System affecting version 1.0. An attacker could exploit this vulnerability by sending a specially crafted query to the server and retrieve all the information stored in 'phonenumber' in '/passwordrecover.php' parameter.
SQL Injection
E-Negosyo Sys 1.0 SQLi: /admin/orders/controller.php
CVE-2024-33957
7.5 - High
- August 06, 2024
SQL injection vulnerability in E-Negosyo System affecting version 1.0. An attacker could exploit this vulnerability by sending a specially crafted query to the server and retrieve all the information stored in 'id' in '/admin/orders/controller.php' parameter
SQL Injection
Stay on top of Security Vulnerabilities
Want an email whenever new vulnerabilities are published for Janobe Young Entrepreneur E Negosyo System or by Janobe? Click the Watch button to subscribe.
