3 results (0.007 seconds)

CVSS: 5.3EPSS: 0%CPEs: 1EXPL: 1

A vulnerability was found in PHPGurukul Car Rental Portal 1.0. It has been rated as problematic. This issue affects some unknown processing of the file /search.php. The manipulation of the argument searchdata leads to cross site scripting. The attack may be initiated remotely. • https://github.com/secuserx/CVE/blob/main/%5BXSS%20vulnerability%5D%20found%20in%20Car%20Rental%20Portal%203.0%20-%20(search.php).md https://phpgurukul.com https://vuldb.com/?ctiid.282869 https://vuldb.com/?id.282869 https://vuldb.com/?submit.435179 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •

CVSS: 9.8EPSS: 16%CPEs: 1EXPL: 2

PHPGurukul Car Rental Project version 2.0 suffers from a remote shell upload vulnerability in changeimage1.php. PHPGurukul Car Rental Project versión 2.0, sufre una vulnerabilidad de carga remota de shell en el archivo changeimage1.php • https://packetstormsecurity.com/files/161267/Car-Rental-Project-2.0-Shell-Upload.html https://www.exploit-db.com/exploits/49520 • CWE-434: Unrestricted Upload of File with Dangerous Type •

CVSS: 7.2EPSS: 1%CPEs: 1EXPL: 1

PHPGurukul Car Rental Project v1.0 allows Remote Code Execution via an executable file in an upload of a new profile image. PHPGurukul Car Rental Project versión v1.0, permite una Ejecución de Código Remota por medio de un archivo ejecutable en una carga de una nueva imagen de perfil. Car Rental Project version 1.0 suffers from a remote code execution vulnerability. • http://packetstormsecurity.com/files/155925/Car-Rental-Project-1.0-Remote-Code-Execution.html • CWE-434: Unrestricted Upload of File with Dangerous Type •