Skip to main content

Expense Tracker

3 CVEs product

Monthly

CVE-2023-5286 MEDIUM This Month

A vulnerability, which was classified as problematic, has been found in SourceCodester Expense Tracker App v1. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

PHP XSS Expense Tracker
NVD GitHub VulDB
CVSS 3.1
5.4
EPSS
0.4%
CVE-2023-44048 MEDIUM POC This Month

Sourcecodester Expense Tracker App v1 is vulnerable to Cross Site Scripting (XSS) via add category. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

XSS Expense Tracker
NVD GitHub
CVSS 3.1
5.4
EPSS
0.4%
CVE-2022-45033 MEDIUM POC This Month

A cross-site scripting (XSS) vulnerability in Expense Tracker 1.0 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Chat text field. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

XSS Expense Tracker
NVD GitHub
CVSS 3.1
5.4
EPSS
0.5%
EPSS 0% CVSS 5.4
MEDIUM This Month

A vulnerability, which was classified as problematic, has been found in SourceCodester Expense Tracker App v1. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

PHP XSS Expense Tracker
NVD GitHub VulDB
EPSS 0% CVSS 5.4
MEDIUM POC This Month

Sourcecodester Expense Tracker App v1 is vulnerable to Cross Site Scripting (XSS) via add category. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

XSS Expense Tracker
NVD GitHub
EPSS 0% CVSS 5.4
MEDIUM POC This Month

A cross-site scripting (XSS) vulnerability in Expense Tracker 1.0 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Chat text field. Rated medium severity (CVSS 5.4), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

XSS Expense Tracker
NVD GitHub

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy