Filtered by vendor Online Market Place Site Project
Subscribe
Total
2 CVE
CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
---|---|---|---|---|---|
CVE-2022-29627 | 1 Online Market Place Site Project | 1 Online Market Place Site | 2024-02-04 | 4.0 MEDIUM | 4.3 MEDIUM |
An insecure direct object reference (IDOR) in Online Market Place Site v1.0 allows attackers to modify products that are owned by other sellers. | |||||
CVE-2022-29628 | 1 Online Market Place Site Project | 1 Online Market Place Site | 2024-02-04 | 3.5 LOW | 5.4 MEDIUM |
A cross-site scripting (XSS) vulnerability in /omps/seller of Online Market Place Site v1.0 allows attackers to execute arbitrary web cripts or HTML via a crafted payload injected into the Page parameter. |