CVE-2024-10701 – PHPGurukul Car Rental Portal search.php cross site scripting
https://notcve.org/view.php?id=CVE-2024-10701
A vulnerability was found in PHPGurukul Car Rental Portal 1.0. It has been rated as problematic. This issue affects some unknown processing of the file /search.php. The manipulation of the argument searchdata leads to cross site scripting. The attack may be initiated remotely. • https://github.com/secuserx/CVE/blob/main/%5BXSS%20vulnerability%5D%20found%20in%20Car%20Rental%20Portal%203.0%20-%20(search.php).md https://phpgurukul.com https://vuldb.com/?ctiid.282869 https://vuldb.com/?id.282869 https://vuldb.com/?submit.435179 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVE-2021-26809
https://notcve.org/view.php?id=CVE-2021-26809
PHPGurukul Car Rental Project version 2.0 suffers from a remote shell upload vulnerability in changeimage1.php. PHPGurukul Car Rental Project versión 2.0, sufre una vulnerabilidad de carga remota de shell en el archivo changeimage1.php • https://packetstormsecurity.com/files/161267/Car-Rental-Project-2.0-Shell-Upload.html https://www.exploit-db.com/exploits/49520 • CWE-434: Unrestricted Upload of File with Dangerous Type •
CVE-2020-5509 – Car Rental Project 1.0 Remote Code Execution
https://notcve.org/view.php?id=CVE-2020-5509
PHPGurukul Car Rental Project v1.0 allows Remote Code Execution via an executable file in an upload of a new profile image. PHPGurukul Car Rental Project versión v1.0, permite una Ejecución de Código Remota por medio de un archivo ejecutable en una carga de una nueva imagen de perfil. Car Rental Project version 1.0 suffers from a remote code execution vulnerability. • http://packetstormsecurity.com/files/155925/Car-Rental-Project-1.0-Remote-Code-Execution.html • CWE-434: Unrestricted Upload of File with Dangerous Type •