cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,exploited_date,poc,trended,trended_no_1,trended_no_1_date,published,trended_score
CVE-2023-1475,https://securityvulnerability.io/vulnerability/CVE-2023-1475,SourceCodester Canteen Management System createuser.php query sql injection,"A vulnerability has been identified in the SourceCodester Canteen Management System 1.0 that allows for SQL injection through the manipulation of the 'uemail' argument in the createuser.php file. This flaw can be exploited remotely, potentially allowing attackers to access sensitive data or manipulate database queries. The public disclosure of this vulnerability makes it vital for users of this system to implement appropriate security measures to safeguard their applications.",SourceCodester,Canteen Management System,9.8,CRITICAL,0.011049999855458736,false,,false,false,false,,,false,false,,2023-03-17T15:15:00.000Z,0
CVE-2023-1461,https://securityvulnerability.io/vulnerability/CVE-2023-1461,SourceCodester Canteen Management System createCategories.php query sql injection,"A vulnerability exists in the SourceCodester Canteen Management System 1.0, allowing remote attackers to execute SQL injection via manipulated arguments in the createCategories.php file. The flaw is located in the 'query' function, specifically affecting the 'categoriesStatus' parameter. This could permit unauthorized access to the database, leading to potential data exploitation or disclosure.",SourceCodester,Canteen Management System,9.8,CRITICAL,0.007670000195503235,false,,false,false,false,,,false,false,,2023-03-17T09:15:00.000Z,0
CVE-2023-1459,https://securityvulnerability.io/vulnerability/CVE-2023-1459,SourceCodester Canteen Management System changeUsername.php sql injection,"An SQL injection vulnerability has been identified in the SourceCodester Canteen Management System 1.0, specifically within the functionality linked to the 'changeUsername.php' file. This vulnerability allows attackers to manipulate the 'username' argument, potentially leading to unauthorized access or manipulation of the database. The nature of this exploit means that it can be launched remotely, increasing the risk for users of the affected system. Given that the exploit has been publicly disclosed, immediate attention is required to mitigate potential security breaches.",SourceCodester,Canteen Management System,9.8,CRITICAL,0.007670000195503235,false,,false,false,false,,,false,false,,2023-03-17T08:15:00.000Z,0
CVE-2023-0781,https://securityvulnerability.io/vulnerability/CVE-2023-0781,SourceCodester Canteen Management System removeOrder.php query sql injection,"A vulnerability exists in the SourceCodester Canteen Management System version 1.0 that allows attackers to perform SQL injection via the 'id' parameter in the removeOrder.php file. This flaw can be exploited remotely, enabling unauthorized access to the database. If successfully exploited, it allows attackers to manipulate the query to compromise the web application and potentially exfiltrate sensitive data. Immediate attention and patching are recommended to mitigate risks associated with this vulnerability.",SourceCodester,Canteen Management System,9.8,CRITICAL,0.002139999996870756,false,,false,false,false,,,false,false,,2023-02-11T13:15:00.000Z,0
CVE-2023-0679,https://securityvulnerability.io/vulnerability/CVE-2023-0679,SourceCodester Canteen Management System removeUser.php sql injection,"A significant SQL injection vulnerability exists within SourceCodester's Canteen Management System version 1.0. The flaw arises from improper handling of user inputs in the removeUser.php file, specifically the manipulation of the 'id' argument. This vulnerability permits remote attackers to execute arbitrary SQL queries, leading to potential database compromise. While exploiting this vulnerability requires advanced skills, its public disclosure makes it a notable concern for system administrators and security professionals.",SourceCodester,Canteen Management System,8.1,HIGH,0.0017300000181421638,false,,false,false,false,,,false,false,,2023-02-06T13:15:00.000Z,0
CVE-2023-0571,https://securityvulnerability.io/vulnerability/CVE-2023-0571,SourceCodester Canteen Management System Add Customer createcustomer.php cross site scripting,A vulnerability has been found in SourceCodester Canteen Management System 1.0 and classified as problematic. This vulnerability affects unknown code of the file createcustomer.php of the component Add Customer. The manipulation of the argument name leads to cross site scripting. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used. VDB-219730 is the identifier assigned to this vulnerability.,SourceCodester,Canteen Management System,5.4,MEDIUM,0.0006300000241026282,false,,false,false,false,,,false,false,,2023-01-29T18:15:00.000Z,0
CVE-2022-4403,https://securityvulnerability.io/vulnerability/CVE-2022-4403,SourceCodester Canteen Management System ajax_represent.php sql injection,A vulnerability classified as critical was found in SourceCodester Canteen Management System. This vulnerability affects unknown code of the file ajax_represent.php. The manipulation of the argument customer_id leads to sql injection. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used. The identifier of this vulnerability is VDB-215272.,Sourcecodester,Canteen Management System,6.3,MEDIUM,0.0014299999456852674,false,,false,false,false,,,false,false,,2022-12-11T00:00:00.000Z,0
CVE-2022-4252,https://securityvulnerability.io/vulnerability/CVE-2022-4252,SourceCodester Canteen Management System categories.php builtin_echo cross site scripting,A vulnerability was found in SourceCodester Canteen Management System. It has been classified as problematic. This affects the function builtin_echo of the file categories.php. The manipulation leads to cross site scripting. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used. The identifier VDB-214629 was assigned to this vulnerability.,Sourcecodester,Canteen Management System,3.5,LOW,0.0006900000153109431,false,,false,false,false,,,false,false,,2022-12-01T00:00:00.000Z,0
CVE-2022-4253,https://securityvulnerability.io/vulnerability/CVE-2022-4253,SourceCodester Canteen Management System customer.php builtin_echo cross site scripting,A vulnerability was found in SourceCodester Canteen Management System. It has been declared as problematic. This vulnerability affects the function builtin_echo of the file customer.php. The manipulation leads to cross site scripting. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used. VDB-214630 is the identifier assigned to this vulnerability.,Sourcecodester,Canteen Management System,3.5,LOW,0.000539999979082495,false,,false,false,false,,,false,false,,2022-12-01T00:00:00.000Z,0
CVE-2022-4234,https://securityvulnerability.io/vulnerability/CVE-2022-4234,SourceCodester Canteen Management System brand.php builtin_echo cross site scripting,A vulnerability was found in SourceCodester Canteen Management System. It has been rated as problematic. This issue affects the function builtin_echo of the file youthappam/brand.php. The manipulation of the argument brand_name leads to cross site scripting. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used. The associated identifier of this vulnerability is VDB-214595.,Sourcecodester,Canteen Management System,3.5,LOW,0.0006900000153109431,false,,false,false,false,,,false,false,,2022-11-30T00:00:00.000Z,0
CVE-2022-4222,https://securityvulnerability.io/vulnerability/CVE-2022-4222,SourceCodester Canteen Management System POST Request ajax_invoice.php query sql injection,A vulnerability was found in SourceCodester Canteen Management System. It has been rated as critical. This issue affects the function query of the file ajax_invoice.php of the component POST Request Handler. The manipulation of the argument search leads to sql injection. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used. The associated identifier of this vulnerability is VDB-214523.,Sourcecodester,Canteen Management System,5,MEDIUM,0.009100000374019146,false,,false,false,false,,,false,false,,2022-11-30T00:00:00.000Z,0
CVE-2022-4091,https://securityvulnerability.io/vulnerability/CVE-2022-4091,SourceCodester Canteen Management System food.php query cross site scripting,A vulnerability was found in SourceCodester Canteen Management System. It has been classified as problematic. This affects the function query of the file food.php. The manipulation of the argument product_name leads to cross site scripting. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used. The associated identifier of this vulnerability is VDB-214359.,Sourcecodester,Canteen Management System,3.5,LOW,0.0006900000153109431,false,,false,false,false,,,false,false,,2022-11-25T00:00:00.000Z,0
CVE-2022-3583,https://securityvulnerability.io/vulnerability/CVE-2022-3583,SourceCodester Canteen Management System login.php sql injection,A vulnerability was found in SourceCodester Canteen Management System 1.0. It has been declared as critical. This vulnerability affects unknown code of the file login.php. The manipulation of the argument business leads to sql injection. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used. The identifier of this vulnerability is VDB-211192.,Sourcecodester,Canteen Management System,7.3,HIGH,0.0021200000774115324,false,,false,false,false,,,false,false,,2022-10-18T00:00:00.000Z,0
CVE-2022-3584,https://securityvulnerability.io/vulnerability/CVE-2022-3584,SourceCodester Canteen Management System edituser.php sql injection,A vulnerability was found in SourceCodester Canteen Management System 1.0. It has been rated as critical. This issue affects some unknown processing of the file edituser.php. The manipulation of the argument id leads to sql injection. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used. The identifier VDB-211193 was assigned to this vulnerability.,Sourcecodester,Canteen Management System,6.3,MEDIUM,0.0014299999456852674,false,,false,false,false,,,false,false,,2022-10-18T00:00:00.000Z,0