CVSS: 4.8EPSS: 0%CPEs: 1EXPL: 1CVE-2023-37688
https://notcve.org/view.php?id=CVE-2023-37688
Maid Hiring Management System v1.0 was discovered to contain a SQL injection vulnerability in the Admin page. • http://maid.com http://phpgurukul.com https://github.com/rt122001/CVES/blob/main/CVE-2023-37688.txt https://phpgurukul.com/maid-hiring-management-system-using-php-and-mysql • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVSS: 4.8EPSS: 0%CPEs: 1EXPL: 1CVE-2023-37690
https://notcve.org/view.php?id=CVE-2023-37690
Maid Hiring Management System v1.0 was discovered to contain a SQL injection vulnerability in the Search Maid page. • http://maid.com http://phpgurukul.com https://github.com/rt122001/CVES/blob/main/CVE-2023-37690.txt https://phpgurukul.com/maid-hiring-management-system-using-php-and-mysql • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVSS: 4.8EPSS: 0%CPEs: 1EXPL: 1CVE-2023-37689
https://notcve.org/view.php?id=CVE-2023-37689
Maid Hiring Management System v1.0 was discovered to contain a SQL injection vulnerability in the Booking Request page. • http://maid.com http://phpgurukul.com https://github.com/rt122001/CVES/blob/main/CVE-2023-37689.txt https://phpgurukul.com/maid-hiring-management-system-using-php-and-mysql • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVSS: 6.1EPSS: 0%CPEs: 1EXPL: 0CVE-2023-37744
https://notcve.org/view.php?id=CVE-2023-37744
Maid Hiring Management System v1.0 was discovered to contain a cross-site scripting (XSS) vulnerability via the component /admin/search-booking-request.php. • https://phpgurukul.com/maid-hiring-management-system-using-php-and-mysql • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVSS: 6.1EPSS: 0%CPEs: 1EXPL: 0CVE-2023-37745
https://notcve.org/view.php?id=CVE-2023-37745
A cross-site scripting (XSS) vulnerability in Maid Hiring Management System v1.0 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Page Description of the /admin/aboutus.php component. • https://phpgurukul.com/maid-hiring-management-system-using-php-and-mysql • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •