Vulnerabilities (CVE)

Filtered by vendor Banking System Project Subscribe
Total 4 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2022-26644 1 Banking System Project 1 Banking System 2024-02-28 4.3 MEDIUM 6.1 MEDIUM
Online Banking System Protect v1.0 was discovered to contain multiple cross-site scripting (XSS) vulnerabilities via parameters on user profile, system_info and accounts management.
CVE-2022-26645 1 Banking System Project 1 Banking System 2024-02-28 7.5 HIGH 9.8 CRITICAL
A remote code execution (RCE) vulnerability in Online Banking System Protect v1.0 allows attackers to execute arbitrary code via a crafted PHP file uploaded through the Upload Image function.
CVE-2022-26646 1 Banking System Project 1 Banking System 2024-02-28 7.5 HIGH 9.8 CRITICAL
Online Banking System Protect v1.0 was discovered to contain a local file inclusion (LFI) vulnerability via the pages parameter.
CVE-2021-41659 1 Banking System Project 1 Banking System 2024-02-28 7.5 HIGH 9.8 CRITICAL
SQL injection vulnerability in Sourcecodester Banking System v1 by oretnom23, allows attackers to execute arbitrary SQL commands via the username or password field.