← Back

Online Market Place Site Project

online_market_place_site_project

4 CVEs • 1 product

Products (1)

Click to collapse
Toggle
Online Market Place Site
online_market_place_site
4 CVEs

CVEs (4)

CVE
VENDORS
PRODUCTS
UPDATED
PUBLISHED
CVSS
CVE-2022-30004
1Online Market Place Site Project
1Online Market Place Site
May 21, 2025
Sep 26, 2022
N/A· v4
9.8 CRITICAL· v3
N/A· v2
Sourcecodester Online Market Place Site v1.0 suffers from an unauthenticated blind SQL Injection Vulnerability allowing remote attackers to dump the SQL database via time-based SQL injection..
CVE-2022-30003
1Online Market Place Site Project
1Online Market Place Site
May 21, 2025
Sep 26, 2022
N/A· v4
5.4 MEDIUM· v3
N/A· v2
Sourcecodester Online Market Place Site 1.0 is vulnerable to Cross Site Scripting (XSS), allowing attackers to register as a Seller then create new products containing XSS payloads in the 'Product Title' and 'Short Descr...Show more
Sourcecodester Online Market Place Site 1.0 is vulnerable to Cross Site Scripting (XSS), allowing attackers to register as a Seller then create new products containing XSS payloads in the 'Product Title' and 'Short Description' fields.Show less
CVE-2022-29628
1Online Market Place Site Project
1Online Market Place Site
Nov 21, 2024
Jun 2, 2022
N/A· v4
5.4 MEDIUM· v3
3.5 LOW· v2
A cross-site scripting (XSS) vulnerability in /omps/seller of Online Market Place Site v1.0 allows attackers to execute arbitrary web cripts or HTML via a crafted payload injected into the Page parameter.
CVE-2022-29627
1Online Market Place Site Project
1Online Market Place Site
Nov 21, 2024
Jun 2, 2022
N/A· v4
4.3 MEDIUM· v3
4.0 MEDIUM· v2
An insecure direct object reference (IDOR) in Online Market Place Site v1.0 allows attackers to modify products that are owned by other sellers.