CVSS: 8.3EPSS: 1%CPEs: 1EXPL: 1CVE-2023-46956
https://notcve.org/view.php?id=CVE-2023-46956
30 Nov 2023 — SQL injection vulnerability in Packers and Movers Management System v.1.0 allows a remote attacker to execute arbitrary code via crafted payload to the /mpms/admin/?page=user/manage_user&id file. Vulnerabilidad de inyección SQL en Packers and Movers Management System v.1.0 permite a un atacante remoto ejecutar código arbitrario a través de un payload manipulado en el archivo /mpms/admin/?page=user/manage_user&id. • https://github.com/geilihan/bug_reports/blob/main/packers-and-movers-management-system/SQL-1.md • CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') •
CVSS: 10.0EPSS: 0%CPEs: 1EXPL: 1CVE-2023-46435
https://notcve.org/view.php?id=CVE-2023-46435
26 Oct 2023 — Sourcecodester Packers and Movers Management System v1.0 is vulnerable to SQL Injection via mpms/?p=services/view_service&id. Sourcecodester Packers and Movers Management System v1.0 es vulnerable a la inyección SQL a través de mpms/?p=services/view_service&id. • https://github.com/kirra-max/bug_reports/blob/main/packers-and-movers-management-system-phpoop-free-source-code/SQL-1.md • CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') •
CVSS: 10.0EPSS: 0%CPEs: 1EXPL: 3CVE-2023-30415 – Packers and Movers Management System 1.0 SQL Injection
https://notcve.org/view.php?id=CVE-2023-30415
19 Sep 2023 — Sourcecodester Packers and Movers Management System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /inquiries/view_inquiry.php. Se descubrió que Sourcecodester Packers and Movers Management System v1.0 contiene una vulnerabilidad de inyección SQL a través del parámetro id en /inquiries/view_inquiry.php. • https://packetstorm.news/files/id/174758 • CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') •