cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,exploited_date,poc,trended,trended_no_1,trended_no_1_date,published,trended_score
CVE-2023-3381,https://securityvulnerability.io/vulnerability/CVE-2023-3381,SourceCodester Online School Fees System GET Parameter datatable.php cross site scripting,A vulnerability classified as problematic was found in SourceCodester Online School Fees System 1.0. Affected by this vulnerability is an unknown functionality of the file /paysystem/datatable.php of the component GET Parameter Handler. The manipulation of the argument doj leads to cross site scripting. The attack can be launched remotely. The exploit has been disclosed to the public and may be used. The identifier VDB-232237 was assigned to this vulnerability.,Sourcecodester,Online School Fees System,3.5,LOW,0.0010999999940395355,false,,false,false,false,,,false,false,,2023-06-23T10:15:00.000Z,0
CVE-2023-3340,https://securityvulnerability.io/vulnerability/CVE-2023-3340,SourceCodester Online School Fees System GET Parameter ajx.php sql injection,"A vulnerability exists in SourceCodester's Online School Fees System 1.0, specifically within the ajx.php file associated with the GET Parameter Handler. This vulnerability allows for SQL injection through the manipulation of the 'name_startsWith' parameter, enabling attackers to execute arbitrary SQL queries remotely. The exploit has been disclosed publicly, increasing the risk of attacks, which may jeopardize database security and integrity. It's crucial for users to apply relevant security patches and monitor their systems for any unauthorized access.",SourceCodester,Online School Fees System,9.8,CRITICAL,0.010420000180602074,false,,false,false,false,,,false,false,,2023-06-20T16:15:00.000Z,0
CVE-2023-3189,https://securityvulnerability.io/vulnerability/CVE-2023-3189,SourceCodester Online School Fees System POST Parameter branch.php cross site scripting,"A vulnerability, which was classified as problematic, was found in SourceCodester Online School Fees System 1.0. This affects an unknown part of the file /paysystem/branch.php of the component POST Parameter Handler. The manipulation of the argument branch leads to cross site scripting. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used. The identifier VDB-231501 was assigned to this vulnerability.",SourceCodester,Online School Fees System,6.1,MEDIUM,0.00107999995816499,false,,false,false,false,,,false,false,,2023-06-14T06:15:00.000Z,0