Vulnerabilities (CVE)

  1. OpenCVE
  2. Vulnerabilities (CVE)
Filtered by vendor Product Show Room Site Project Subscribe
Total 14 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2022-32416 1 Product Show Room Site Project 1 Product Show Room Site 2024-11-21 6.5 MEDIUM 7.2 HIGH
Product Show Room Site v1.0 is vulnerable to SQL Injection via /psrs/classes/Master.php?f=delete_product.
CVE-2022-32415 1 Product Show Room Site Project 1 Product Show Room Site 2024-11-21 6.5 MEDIUM 8.8 HIGH
Product Show Room Site v1.0 is vulnerable to SQL Injection via /psrs/?p=products/view_product&id=.
CVE-2022-32367 1 Product Show Room Site Project 1 Product Show Room Site 2024-11-21 6.5 MEDIUM 7.2 HIGH
Product Show Room Site v1.0 is vulnerable to SQL Injection via /psrs/admin/?page=inquiries/view_inquiry&id=.
CVE-2022-32366 1 Product Show Room Site Project 1 Product Show Room Site 2024-11-21 6.5 MEDIUM 7.2 HIGH
Product Show Room Site v1.0 is vulnerable to SQL Injection via /psrs/admin/fields/view_field.php?id=.
CVE-2022-32365 1 Product Show Room Site Project 1 Product Show Room Site 2024-11-21 6.5 MEDIUM 7.2 HIGH
Product Show Room Site v1.0 is vulnerable to SQL Injection via /psrs/admin/fields/manage_field.php?id=.
CVE-2022-32364 1 Product Show Room Site Project 1 Product Show Room Site 2024-11-21 6.5 MEDIUM 7.2 HIGH
Product Show Room Site v1.0 is vulnerable to SQL Injection via /psrs/admin/?page=products/manage_product&id=.
CVE-2022-32363 1 Product Show Room Site Project 1 Product Show Room Site 2024-11-21 6.5 MEDIUM 7.2 HIGH
Product Show Room Site v1.0 is vulnerable to SQL Injection via /psrs/admin/categories/view_category.php?id=.
CVE-2022-32362 1 Product Show Room Site Project 1 Product Show Room Site 2024-11-21 6.5 MEDIUM 7.2 HIGH
Product Show Room Site v1.0 is vulnerable to SQL Injection via /psrs/admin/categories/manage_category.php?id=.
CVE-2022-32359 1 Product Show Room Site Project 1 Product Show Room Site 2024-11-21 6.5 MEDIUM 7.2 HIGH
Product Show Room Site v1.0 is vulnerable to SQL Injection via /psrs/classes/Master.php?f=delete_category.
CVE-2022-32358 1 Product Show Room Site Project 1 Product Show Room Site 2024-11-21 6.5 MEDIUM 7.2 HIGH
Product Show Room Site v1.0 is vulnerable to SQL Injection via /psrs/classes/Master.php?f=delete_inquiry.
CVE-2022-32355 1 Product Show Room Site Project 1 Product Show Room Site 2024-11-21 6.5 MEDIUM 7.2 HIGH
Product Show Room Site v1.0 is vulnerable to SQL Injection via /psrs/admin/?page=products/view_product&id=.
CVE-2022-32354 1 Product Show Room Site Project 1 Product Show Room Site 2024-11-21 6.5 MEDIUM 7.2 HIGH
Product Show Room Site v1.0 is vulnerable to SQL Injection via /psrs/admin/?page=user/manage_user&id=.
CVE-2022-32353 1 Product Show Room Site Project 1 Product Show Room Site 2024-11-21 6.5 MEDIUM 7.2 HIGH
Product Show Room Site v1.0 is vulnerable to SQL Injection via /psrs/admin/categories/manage_field_order.php?id=.
CVE-2022-1980 1 Product Show Room Site Project 1 Product Show Room Site 2024-11-21 3.5 LOW 2.4 LOW
A vulnerability was found in SourceCodester Product Show Room Site 1.0. It has been rated as problematic. This issue affects the file /admin/?page=system_info/contact_info. The manipulation of the textbox Telephone with the input <script>alert(1)</script> leads to cross site scripting. The attack may be initiated remotely but requires authentication. Exploit details have been disclosed to the public.