cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,exploited_date,poc,trended,trended_no_1,trended_no_1_date,published,trended_score
CVE-2023-1481,https://securityvulnerability.io/vulnerability/CVE-2023-1481,SourceCodester Monitoring of Students Cyber Accounts System POST Parameter cross site scripting,"A vulnerability, which was classified as problematic, has been found in SourceCodester Monitoring of Students Cyber Accounts System 1.0. Affected by this issue is some unknown functionality of the file modules/balance/index.php?view=balancelist of the component POST Parameter Handler. The manipulation of the argument id with the input ""><script>alert(111)</script> leads to cross site scripting. The attack may be launched remotely. The exploit has been disclosed to the public and may be used. The identifier of this vulnerability is VDB-223364.",SourceCodester,Monitoring of Students Cyber Accounts System,6.1,MEDIUM,0.0007999999797903001,false,,false,false,false,,,false,false,,2023-03-18T09:15:00.000Z,0
CVE-2023-1480,https://securityvulnerability.io/vulnerability/CVE-2023-1480,SourceCodester Monitoring of Students Cyber Accounts System POST Parameter login.php sql injection,"A security flaw has been identified in the SourceCodester Monitoring of Students Cyber Accounts System, specifically within the login.php file responsible for handling POST parameters. An attacker can exploit this vulnerability by manipulating the 'un' parameter, leading to unauthorized SQL query execution. This remote exploit can compromise the integrity of the database and expose sensitive information, necessitating immediate attention from users of this system.",SourceCodester,Monitoring of Students Cyber Accounts System,9.8,CRITICAL,0.0021800000686198473,false,,false,false,false,,,false,false,,2023-03-18T09:15:00.000Z,0