Online Market Place Site

online_market_place_site

Vendor: Online Market Place Site Project • 4 CVEs

CVEs (4)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2022-30004 1Online Market Place Site Project 1Online Market Place Site May 21, 2025 Sep 26, 2022 N/A· v4 9.8 CRITICAL· v3 N/A· v2 Sourcecodester Online Market Place Site v1.0 suffers from an unauthenticated blind SQL Injection Vulnerability allowing remote attackers to dump the SQL database via time-based SQL injection..
CVE-2022-30003 1Online Market Place Site Project 1Online Market Place Site May 21, 2025 Sep 26, 2022 N/A· v4 5.4 MEDIUM· v3 N/A· v2 Sourcecodester Online Market Place Site 1.0 is vulnerable to Cross Site Scripting (XSS), allowing attackers to register as a Seller then create new products containing XSS payloads in the 'Product Title' and 'Short Descr...Show more Sourcecodester Online Market Place Site 1.0 is vulnerable to Cross Site Scripting (XSS), allowing attackers to register as a Seller then create new products containing XSS payloads in the 'Product Title' and 'Short Description' fields.Show less
CVE-2022-29628 1Online Market Place Site Project 1Online Market Place Site Nov 21, 2024 Jun 2, 2022 N/A· v4 5.4 MEDIUM· v3 3.5 LOW· v2 A cross-site scripting (XSS) vulnerability in /omps/seller of Online Market Place Site v1.0 allows attackers to execute arbitrary web cripts or HTML via a crafted payload injected into the Page parameter.
CVE-2022-29627 1Online Market Place Site Project 1Online Market Place Site Nov 21, 2024 Jun 2, 2022 N/A· v4 4.3 MEDIUM· v3 4.0 MEDIUM· v2 An insecure direct object reference (IDOR) in Online Market Place Site v1.0 allows attackers to modify products that are owned by other sellers.