Simple Social Networking Site Project Simple Social Networking Site — known CVE vulnerabilities
Every CVE whose affected-product data names Simple Social Networking Site Project Simple Social Networking Site, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (5)
CVE-2022-30376 — CVSS 7.2 (high): Sourcecodester Simple Social Networking Site v1.0 is vulnerable to SQL Injection via /sns/admin/members/view_member.php?id=.
CVE-2022-30378 — CVSS 7.2 (high): Sourcecodester Simple Social Networking Site v1.0 is vulnerable to SQL Injection via /sns/admin/?page=posts/view_post&id=.
CVE-2022-30379 — CVSS 7.2 (high): Sourcecodester Simple Social Networking Site v1.0 is vulnerable to SQL Injection via /sns/admin/?page=user/manage_user&id=.
CVE-2022-30375 — CVSS 6.5 (medium): Sourcecodester Simple Social Networking Site v1.0 is vulnerable to file deletion via /sns/classes/Master.php?f=delete_img.
CVE-2022-30460 — CVSS 5.4 (medium): Simple Social Networking Site v1.0 is vulnerable to Cross Site Scripting (XSS) via /sns/classes/Users.php?f=save, firstname.