Filtered by vendor Oretnom23 Subscriptions
Filtered by product Expense Tracker Subscriptions
Total 3 CVE
CVE Vendors Products Updated CVSS v3.1
CVE-2023-5286 1 Oretnom23 1 Expense Tracker 2024-11-21 3.5 Low
A vulnerability, which was classified as problematic, has been found in SourceCodester Expense Tracker App v1. Affected by this issue is some unknown functionality of the file add_category.php of the component Category Handler. The manipulation of the argument category_name leads to cross site scripting. The attack may be launched remotely. The exploit has been disclosed to the public and may be used. VDB-240914 is the identifier assigned to this vulnerability.
CVE-2023-44048 1 Oretnom23 1 Expense Tracker 2024-11-21 5.4 Medium
Sourcecodester Expense Tracker App v1 is vulnerable to Cross Site Scripting (XSS) via add category.
CVE-2022-45033 1 Oretnom23 1 Expense Tracker 2024-11-21 5.4 Medium
A cross-site scripting (XSS) vulnerability in Expense Tracker 1.0 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Chat text field.