cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,exploited_date,poc,trended,trended_no_1,trended_no_1_date,published,trended_score
CVE-2023-1791,https://securityvulnerability.io/vulnerability/CVE-2023-1791,SourceCodester Simple Task Allocation System manage_user.php sql injection,"A vulnerability exists in the SourceCodester Simple Task Allocation System version 1.0 due to a SQL injection issue in the manage_user.php file. By manipulating the 'id' argument, an attacker can execute malicious SQL statements, potentially leading to unauthorized data access. This vulnerability can be exploited remotely, making it critical for users of this system to patch against the exploit. The public disclosure of this vulnerability may encourage attackers to target affected systems actively.",SourceCodester,Simple Task Allocation System,9.8,CRITICAL,0.0017300000181421638,false,,false,false,false,,,false,false,,2023-04-02T07:15:00.000Z,0
CVE-2023-1790,https://securityvulnerability.io/vulnerability/CVE-2023-1790,SourceCodester Simple Task Allocation System index.php information disclosure,"An information disclosure vulnerability exists in the SourceCodester Simple Task Allocation System 1.0. Affected functionality in the index.php file allows remote attackers to manipulate the 'page' argument, leading to unauthorized information exposure. This flaw can be exploited without any prior authentication, raising significant risks for data privacy. Given its public disclosure, users are strongly urged to take immediate action to mitigate potential threats.",SourceCodester,Simple Task Allocation System,7.5,HIGH,0.0011399999493733048,false,,false,false,false,,,false,false,,2023-04-01T09:15:00.000Z,0
CVE-2023-1687,https://securityvulnerability.io/vulnerability/CVE-2023-1687,SourceCodester Simple Task Allocation System cross site scripting,A vulnerability classified as problematic has been found in SourceCodester Simple Task Allocation System 1.0. Affected is an unknown function of the file LoginRegistration.php?a=register_user. The manipulation of the argument Fullname leads to cross site scripting. It is possible to launch the attack remotely. The identifier of this vulnerability is VDB-224244.,SourceCodester,Simple Task Allocation System,6.1,MEDIUM,0.0006099999882280827,false,,false,false,false,,,false,false,,2023-03-29T08:15:00.000Z,0