16 results (0.008 seconds)

CVSS: 9.8EPSS: 0%CPEs: 1EXPL: 1

Car Rental Management System v1.0 is vulnerable to Arbitrary code execution via car-rental-management-system/admin/ajax.php?action=save_car. Car Rental Management System versión v1.0, es vulnerable a una ejecución de código arbitrario por medio del archivo car-rental-management-system/admin/ajax.php?action=save_car • https://github.com/k0xx11/bug_report/blob/main/vendors/campcodes.com/car-rental-management-system/RCE-1.md • CWE-434: Unrestricted Upload of File with Dangerous Type •

CVSS: 9.8EPSS: 0%CPEs: 1EXPL: 1

Car Rental Management System v1.0 is vulnerable to Arbitrary code execution via ip/car-rental-management-system/admin/ajax.php?action=save_settings. Car Rental Management System versión v1.0, es vulnerable a una ejecución de código arbitrario por medio del archivo ip/car-rental-management-system/admin/ajax.php?action=save_settings • https://github.com/k0xx11/bug_report/blob/main/vendors/campcodes.com/car-rental-management-system/RCE-2.md •

CVSS: 7.2EPSS: 0%CPEs: 1EXPL: 1

Car Rental Management System v1.0 is vulnerable to SQL Injection via /car-rental-management-system/admin/manage_movement.php?id=. Car Rental Management System versión v1.0, es vulnerable a una inyección SQL por medio del archivo /car-rental-management-system/admin/manage_movement.php?id= • https://github.com/k0xx11/bug_report/blob/main/vendors/campcodes.com/car-rental-management-system/SQLi-3.md • CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') •

CVSS: 7.2EPSS: 1%CPEs: 1EXPL: 1

Car Rental Management System v1.0 is vulnerable to SQL Injection via /ip/car-rental-management-system/admin/ajax.php?action=login. Car Rental Management System versión v1.0, es vulnerable a una inyección SQL por medio del archivo /ip/car-rental-management-system/admin/ajax.php?action=login • https://github.com/k0xx11/bug_report/blob/main/vendors/campcodes.com/car-rental-management-system/SQLi-1.md https://github.com/k0xx11/bug_report/blob/main/vendors/campcodes.com/car-rental-management-system/SQLi-1.md. • CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') •

CVSS: 7.2EPSS: 1%CPEs: 1EXPL: 1

Car Rental Management System v1.0 is vulnerable to SQL Injection via car-rental-management-system/booking.php?car_id=. Car Rental Management System versión v1.0, es vulnerable a una inyección SQL por medio del archivo car-rental-management-system/booking.php?car_id= • https://github.com/k0xx11/bug_report/blob/main/vendors/campcodes.com/car-rental-management-system/SQLi-4.md • CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') •