Oretnom23 Expense Management System — known CVE vulnerabilities
Every CVE whose affected-product data names Oretnom23 Expense Management System, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (4)
CVE-2023-44824 — CVSS 7.8 (high): An issue in Expense Management System v.1.0 allows a local attacker to execute arbitrary code via a crafted file uploaded to the…
CVE-2022-36754 — CVSS 7.2 (high): Expense Management System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /Home/debit_credit_p.
CVE-2021-41434 — CVSS 5.4 (medium): A stored Cross-Site Scripting (XSS) vulnerability exists in version 1.0 of the Expense Management System application that allows for…
CVE-2024-1031 — CVSS 3.5 (low): A vulnerability was found in CodeAstro Expense Management System 1.0. It has been declared as problematic. This vulnerability affects…