CVE-2023-46956
https://notcve.org/view.php?id=CVE-2023-46956
SQL injection vulnerability in Packers and Movers Management System v.1.0 allows a remote attacker to execute arbitrary code via crafted payload to the /mpms/admin/?page=user/manage_user&id file. Vulnerabilidad de inyección SQL en Packers and Movers Management System v.1.0 permite a un atacante remoto ejecutar código arbitrario a través de un payload manipulado en el archivo /mpms/admin/?page=user/manage_user&id. • https://github.com/geilihan/bug_reports/blob/main/packers-and-movers-management-system/SQL-1.md • CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') •
CVE-2023-46435
https://notcve.org/view.php?id=CVE-2023-46435
Sourcecodester Packers and Movers Management System v1.0 is vulnerable to SQL Injection via mpms/?p=services/view_service&id. Sourcecodester Packers and Movers Management System v1.0 es vulnerable a la inyección SQL a través de mpms/?p=services/view_service&id. • https://github.com/kirra-max/bug_reports/blob/main/packers-and-movers-management-system-phpoop-free-source-code/SQL-1.md • CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') •
CVE-2023-30415 – Packers And Movers Management System 1.0 SQL Injection
https://notcve.org/view.php?id=CVE-2023-30415
Sourcecodester Packers and Movers Management System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /inquiries/view_inquiry.php. Se descubrió que Sourcecodester Packers and Movers Management System v1.0 contiene una vulnerabilidad de inyección SQL a través del parámetro id en /inquiries/view_inquiry.php. • http://packetstormsecurity.com/files/174758/Packers-And-Movers-Management-System-1.0-SQL-Injection.html https://robsware.github.io/2023/09/01/firstcve • CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') •