cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,exploited_date,poc,trended,trended_no_1,trended_no_1_date,published,trended_score
CVE-2023-1858,https://securityvulnerability.io/vulnerability/CVE-2023-1858,SourceCodester Earnings and Expense Tracker App index.php information disclosure,"The Earnings and Expense Tracker App by SourceCodester is vulnerable to a significant information disclosure issue that arises within the index.php file. This vulnerability is exploited through manipulation of the 'page' argument, which allows unauthorized access to sensitive information. The attack can be executed remotely, raising concerns about the security of user data and application integrity. It is crucial for users of this application to implement protective measures to mitigate potential exploitation of this vulnerability.",SourceCodester,Earnings and Expense Tracker App,7.5,HIGH,0.003659999929368496,false,,false,false,false,,,false,false,,2023-04-05T09:15:00.000Z,0
CVE-2023-1785,https://securityvulnerability.io/vulnerability/CVE-2023-1785,SourceCodester Earnings and Expense Tracker App manage_user.php sql injection,"A vulnerability exists in the Earnings and Expense Tracker App by SourceCodester, specifically within the manage_user.php file. This issue arises from improper handling of the 'id' argument, which makes the application susceptible to SQL injection attacks. Attackers can exploit this vulnerability remotely, potentially allowing them to manipulate the database and access sensitive information. It's crucial for users of version 1.0 to apply security measures or patches to mitigate the risk associated with this vulnerability.",SourceCodester,Earnings and Expense Tracker App,9.8,CRITICAL,0.002139999996870756,false,,false,false,false,,,false,false,,2023-03-31T20:15:00.000Z,0
CVE-2023-1690,https://securityvulnerability.io/vulnerability/CVE-2023-1690,SourceCodester Earnings and Expense Tracker App cross site scripting,"A vulnerability, which was classified as problematic, has been found in SourceCodester Earnings and Expense Tracker App 1.0. This issue affects some unknown processing of the file LoginRegistration.php?a=register_user. The manipulation of the argument fullname leads to cross site scripting. The attack may be initiated remotely. The identifier VDB-224309 was assigned to this vulnerability.",SourceCodester,Earnings and Expense Tracker App,6.1,MEDIUM,0.0006200000061653554,false,,false,false,false,,,false,false,,2023-03-29T11:15:00.000Z,0
CVE-2023-1689,https://securityvulnerability.io/vulnerability/CVE-2023-1689,SourceCodester Earnings and Expense Tracker App cross site scripting,A vulnerability classified as problematic was found in SourceCodester Earnings and Expense Tracker App 1.0. This vulnerability affects unknown code of the file Master.php?a=save_earning. The manipulation of the argument name leads to cross site scripting. The attack can be initiated remotely. The identifier of this vulnerability is VDB-224308.,SourceCodester,Earnings and Expense Tracker App,6.1,MEDIUM,0.0006099999882280827,false,,false,false,false,,,false,false,,2023-03-29T10:15:00.000Z,0
CVE-2023-1688,https://securityvulnerability.io/vulnerability/CVE-2023-1688,SourceCodester Earnings and Expense Tracker App cross site scripting,A vulnerability classified as problematic has been found in SourceCodester Earnings and Expense Tracker App 1.0. This affects an unknown part of the file Master.php?a=save_expense. The manipulation of the argument name leads to cross site scripting. It is possible to initiate the attack remotely. The associated identifier of this vulnerability is VDB-224307.,SourceCodester,Earnings and Expense Tracker App,6.1,MEDIUM,0.0006099999882280827,false,,false,false,false,,,false,false,,2023-03-29T09:15:00.000Z,0