Vulnerabilities (CVE)

Join the Common Vulnerabilities and Exposures (CVE) community and start to get notified about new vulnerabilities.

  1. Reconshell
  2. Vulnerabilities (CVE)
Filtered by vendor Online Reviewer Management System Project Subscribe
Filtered by product Online Reviewer Management System
Total 3 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2023-25431 1 Online Reviewer Management System Project 1 Online Reviewer Management System 2023-03-06 N/A 4.8 MEDIUM
An issue was discovered in Online Reviewer Management System v1.0. There is a XSS vulnerability via reviewer_0/admins/assessments/course/course-update.php.
CVE-2023-25432 1 Online Reviewer Management System Project 1 Online Reviewer Management System 2023-03-06 N/A 7.2 HIGH
An issue was discovered in Online Reviewer Management System v1.0. There is a SQL injection that can directly issue instructions to the background database system via reviewer_0/admins/assessments/course/course-update.php.
CVE-2023-1038 1 Online Reviewer Management System Project 1 Online Reviewer Management System 2023-03-03 N/A 9.8 CRITICAL
A vulnerability classified as critical has been found in SourceCodester Online Reviewer Management System 1.0. Affected is an unknown function of the file /reviewer_0/admins/assessments/pretest/questions-view.php. The manipulation of the argument id leads to sql injection. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used. The identifier of this vulnerability is VDB-221796.