CVSS: 4.8EPSS: 0%CPEs: 1EXPL: 1CVE-2023-37684
https://notcve.org/view.php?id=CVE-2023-37684
Online Nurse Hiring System v1.0 was discovered to contain a cross-site scripting (XSS) vulnerability in the Search Report Details of the Admin portal. • http://online.com http://phpgurukul.com https://github.com/rt122001/CVES/blob/main/CVE-2023-37684.txt https://phpgurukul.com/online-nurse-hiring-system-using-php-and-mysql • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVSS: 7.2EPSS: 0%CPEs: 1EXPL: 1CVE-2023-37687
https://notcve.org/view.php?id=CVE-2023-37687
Online Nurse Hiring System v1.0 was discovered to contain a cross-site scripting (XSS) vulnerability in the View Request of Nurse Page in the Admin portal. • http://online.com http://phpgurukul.com https://github.com/rt122001/CVES/blob/main/CVE-2023-37687.txt • CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') •
CVSS: 9.8EPSS: 0%CPEs: 1EXPL: 1CVE-2023-39551
https://notcve.org/view.php?id=CVE-2023-39551
PHPGurukul Online Security Guards Hiring System v.1.0 is vulnerable to SQL Injection via osghs/admin/search.php. • https://github.com/Trinity-SYT-SECURITY/XSS_vuln_issue/blob/main/Online%20Security%20Guards%20Hiring%20System%201.0.md https://nvd.nist.gov/vuln/detail/CVE-2023-39551 https://www.chtsecurity.com/news/0dbe8e1d-0a6c-4604-9cf1-778ddc86a8c1 https://www.chtsecurity.com/news/285b9375-ba65-4f61-a02a-a575337dc86c • CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') •
CVSS: 8.8EPSS: 0%CPEs: 1EXPL: 1CVE-2023-37772
https://notcve.org/view.php?id=CVE-2023-37772
Online Shopping Portal Project v3.1 was discovered to contain a SQL injection vulnerability via the Email parameter at /shopping/login.php. • https://github.com/anky-123/CVE-2023-37772 http://phpgurukul.com/shopping-portal-free-download https://github.com/anky-123/CVE-2023-37772/blob/main/CVE-2 https://phpgurukul.com • CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') •
CVSS: 9.8EPSS: 0%CPEs: 1EXPL: 2CVE-2023-37771
https://notcve.org/view.php?id=CVE-2023-37771
Art Gallery Management System v1.0 contains a SQL injection vulnerability via the cid parameter at /agms/product.php. • https://github.com/anky-123/CVE-2023-37771 https://github.com/anky-123/CVE-2023-37771/blob/main/CVE • CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') •