cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,exploited_date,poc,trended,trended_no_1,trended_no_1_date,published,trended_score
CVE-2023-1497,https://securityvulnerability.io/vulnerability/CVE-2023-1497,SourceCodester Simple and Nice Shopping Cart Script uploaderm.php unrestricted upload,"A vulnerability has been identified in the SourceCodester Simple and Nice Shopping Cart Script version 1.0, specifically within the file 'uploaderm.php'. This issue allows for unrestricted file uploads due to inadequate argument handling in the 'submit' parameter. An attacker can exploit this vulnerability remotely to upload malicious files, potentially compromising the integrity and security of the entire web application. The exploit is publicly known, making it crucial for users and administrators to implement mitigations promptly.",SourceCodester,Simple and Nice Shopping Cart Script,9.8,CRITICAL,0.0024300001095980406,false,,false,false,false,,,false,false,,2023-03-19T19:15:00.000Z,0
CVE-2022-2957,https://securityvulnerability.io/vulnerability/CVE-2022-2957,SourceCodester Simple and Nice Shopping Cart Script profile.php sql injection,A vulnerability classified as critical was found in SourceCodester Simple and Nice Shopping Cart Script. Affected by this vulnerability is an unknown functionality of the file /mkshop/Men/profile.php. The manipulation of the argument mem_id leads to sql injection. The attack can be launched remotely. The exploit has been disclosed to the public and may be used. The identifier VDB-207001 was assigned to this vulnerability.,Sourcecodester,Simple And Nice Shopping Cart Script,6.3,MEDIUM,0.007060000207275152,false,,false,false,false,,,false,false,,2022-08-25T06:10:11.000Z,0
CVE-2022-2909,https://securityvulnerability.io/vulnerability/CVE-2022-2909,SourceCodester Simple and Nice Shopping Cart Script profile.php unrestricted upload,A vulnerability was found in SourceCodester Simple and Nice Shopping Cart Script. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /mkshop/Men/profile.php. The manipulation leads to unrestricted upload. The attack can be launched remotely. The exploit has been disclosed to the public and may be used. The identifier VDB-206845 was assigned to this vulnerability.,Sourcecodester,Simple And Nice Shopping Cart Script,6.3,MEDIUM,0.0016899999463930726,false,,false,false,false,,,false,false,,2022-08-20T06:55:11.000Z,0
CVE-2022-2814,https://securityvulnerability.io/vulnerability/CVE-2022-2814,SourceCodester Simple and Nice Shopping Cart Script login.php cross site scripting,A vulnerability has been found in SourceCodester Simple and Nice Shopping Cart Script and classified as problematic. Affected by this vulnerability is an unknown functionality of the file /mkshope/login.php. The manipulation of the argument msg leads to cross site scripting. The attack can be launched remotely. The exploit has been disclosed to the public and may be used. The identifier VDB-206401 was assigned to this vulnerability.,Sourcecodester,Simple And Nice Shopping Cart Script,3.5,LOW,0.001290000043809414,false,,false,false,false,,,false,false,,2022-08-15T06:00:20.000Z,0