Oretnom23 Simple Cold Storage Management System
By the Year
In 2024 there have been 0 vulnerabilities in Oretnom23 Simple Cold Storage Management System . Simple Cold Storage Management System did not have any published security vulnerabilities last year.
| Year | Vulnerabilities | Average Score |
|---|---|---|
| 2024 | 0 | 0.00 |
| 2023 | 0 | 0.00 |
| 2022 | 13 | 6.38 |
| 2021 | 0 | 0.00 |
| 2020 | 0 | 0.00 |
| 2019 | 0 | 0.00 |
| 2018 | 0 | 0.00 |
It may take a day or so for new Simple Cold Storage Management System vulnerabilities to show up in the stats or in the list of recent security vulnerabilties. Additionally vulnerabilities may be tagged under a different product or component name.
Recent Oretnom23 Simple Cold Storage Management System Security Vulnerabilities
A vulnerability was found in SourceCodester Simple Cold Storage Management System 1.0
CVE-2022-3587
5.4 - Medium
- October 18, 2022
A vulnerability was found in SourceCodester Simple Cold Storage Management System 1.0. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the component My Account. The manipulation of the argument First Name leads to cross site scripting. The attack can be launched remotely. The exploit has been disclosed to the public and may be used. The identifier VDB-211201 was assigned to this vulnerability.
XSS
A vulnerability classified as problematic has been found in SourceCodester Simple Cold Storage Management System 1.0
CVE-2022-3585
4.3 - Medium
- October 18, 2022
A vulnerability classified as problematic has been found in SourceCodester Simple Cold Storage Management System 1.0. Affected is an unknown function of the file /csms/?page=contact_us of the component Contact Us. The manipulation leads to cross-site request forgery. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used. VDB-211194 is the identifier assigned to this vulnerability.
Session Riding
A vulnerability has been found in SourceCodester Simple Cold Storage Management System 1.0 and classified as problematic
CVE-2022-3582
3.5 - Low
- October 18, 2022
A vulnerability has been found in SourceCodester Simple Cold Storage Management System 1.0 and classified as problematic. Affected by this vulnerability is an unknown functionality. The manipulation of the argument change password leads to cross-site request forgery. The attack can be launched remotely. The exploit has been disclosed to the public and may be used. The identifier VDB-211189 was assigned to this vulnerability.
Session Riding
A vulnerability was found in SourceCodester Simple Cold Storage Management System 1.0
CVE-2022-3549
7.2 - High
- October 17, 2022
A vulnerability was found in SourceCodester Simple Cold Storage Management System 1.0. It has been rated as problematic. This issue affects some unknown processing of the file /csms/admin/?page=user/manage_user of the component Avatar Handler. The manipulation leads to unrestricted upload. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used. The identifier VDB-211049 was assigned to this vulnerability.
Unrestricted File Upload
A vulnerability was found in SourceCodester Simple Cold Storage Management System 1.0
CVE-2022-3548
4.8 - Medium
- October 17, 2022
A vulnerability was found in SourceCodester Simple Cold Storage Management System 1.0. It has been declared as problematic. This vulnerability affects unknown code of the component Add New Storage Handler. The manipulation of the argument Name leads to cross site scripting. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used. The identifier of this vulnerability is VDB-211048.
XSS
A vulnerability was found in SourceCodester Simple Cold Storage Management System 1.0 and classified as problematic
CVE-2022-3546
4.8 - Medium
- October 17, 2022
A vulnerability was found in SourceCodester Simple Cold Storage Management System 1.0 and classified as problematic. Affected by this issue is some unknown functionality of the file /csms/admin/?page=user/list of the component Create User Handler. The manipulation of the argument First Name/Last Name leads to cross site scripting. The attack may be launched remotely. The exploit has been disclosed to the public and may be used. VDB-211046 is the identifier assigned to this vulnerability.
XSS
Simple Cold Storage Management System v1.0 is vulnerable to SQL Injection
CVE-2022-42232
7.2 - High
- October 14, 2022
Simple Cold Storage Management System v1.0 is vulnerable to SQL Injection via /csms/classes/Master.php?f=delete_storage.
SQL Injection
Simple Cold Storage Management System v1.0 is vulnerable to SQL injection
CVE-2022-42250
7.2 - High
- October 06, 2022
Simple Cold Storage Management System v1.0 is vulnerable to SQL injection via /csms/admin/inquiries/view_details.php?id=.
SQL Injection
Simple Cold Storage Management System v1.0 is vulnerable to SQL injection
CVE-2022-42249
7.2 - High
- October 06, 2022
Simple Cold Storage Management System v1.0 is vulnerable to SQL injection via /csms/admin/storages/view_storage.php?id=.
SQL Injection
Simple Cold Storage Management System v1.0 is vulnerable to SQL injection
CVE-2022-42243
7.2 - High
- October 06, 2022
Simple Cold Storage Management System v1.0 is vulnerable to SQL injection via /csms/admin/storages/manage_storage.php?id=.
SQL Injection
Simple Cold Storage Management System v1.0 is vulnerable to SQL injection
CVE-2022-42242
7.2 - High
- October 06, 2022
Simple Cold Storage Management System v1.0 is vulnerable to SQL injection via /csms/classes/Master.php?f=delete_booking.
SQL Injection
Simple Cold Storage Management System v1.0 is vulnerable to SQL injection
CVE-2022-42241
7.2 - High
- October 06, 2022
Simple Cold Storage Management System v1.0 is vulnerable to SQL injection via /csms/classes/Master.php?f=delete_message.
SQL Injection
An SQL Injection vulnerability exists in Sourcecodester Simple Cold Storage Management System using PHP/OOP 1.0
CVE-2021-45435
9.8 - Critical
- January 28, 2022
An SQL Injection vulnerability exists in Sourcecodester Simple Cold Storage Management System using PHP/OOP 1.0 via the username field in login.php.
SQL Injection
Stay on top of Security Vulnerabilities
Want an email whenever new vulnerabilities are published for Oretnom23 Simple Cold Storage Management System or by Oretnom23? Click the Watch button to subscribe.
