Purchase Order Management System Project Purchase Order Management System — known CVE vulnerabilities
Every CVE whose affected-product data names Purchase Order Management System Project Purchase Order Management System, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (8)
CVE-2022-28021 — CVSS 9.8 (critical): Purchase Order Management System v1.0 was discovered to contain a remote code execution (RCE) vulnerability via /purchase_order/admin/?page=…
CVE-2022-28022 — CVSS 9.8 (critical): Purchase Order Management System v1.0 was discovered to contain a SQL injection vulnerability via /purchase_order/classes/Master.php?f=delet…
CVE-2022-28023 — CVSS 9.8 (critical): Purchase Order Management System v1.0 was discovered to contain a SQL injection vulnerability via /purchase_order/classes/Master.php?f=delet…
CVE-2021-40908 — CVSS 9.8 (critical): SQL injection vulnerability in Login.php in Sourcecodester Purchase Order Management System v1 by oretnom23, allows attackers to execute…
CVE-2022-44400 — CVSS 9.8 (critical): Purchase Order Management System v1.0 contains a file upload vulnerability via /purchase_order/admin/?page=system_info.
CVE-2023-2130 — CVSS 6.3 (medium): A vulnerability classified as critical has been found in SourceCodester Purchase Order Management System 1.0. Affected is an unknown…
CVE-2022-3503 — CVSS 3.5 (low): A vulnerability was found in SourceCodester Purchase Order Management System 1.0. It has been declared as problematic. This vulnerability…
CVE-2023-2293 — CVSS 2.4 (low): A vulnerability was found in SourceCodester Purchase Order Management System 1.0. It has been classified as problematic. This affects an…