Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
car rental management system project car rental management system 1.0 vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv2
CVE-2020-29287
An SQL injection vulnerability exists in Car Rental Management System v1.0 can be exploited via the id parameter in view_car.php or the car_id parameter in booking.php.
Car Rental Management System Project Car Rental Management System 1.0
7.5
CVSSv2
CVE-2020-27956
An Arbitrary File Upload in the Upload Image component in SourceCodester Car Rental Management System 1.0 allows the user to conduct remote code execution via admin/index.php?page=manage_car because .php files can be uploaded to admin/assets/uploads/ (under the web root).
Car Rental Management System Project Car Rental Management System 1.0
7.5
CVSSv2
CVE-2020-29227
An issue exists in Car Rental Management System 1.0. An unauthenticated user can perform a file inclusion attack against the /index.php file with a partial filename in the "page" parameter, to cause local file inclusion resulting in code execution.
Car Rental Management System Project Car Rental Management System 1.0
4.3
CVSSv2
CVE-2020-23832
A Persistent Cross-Site Scripting (XSS) vulnerability in message_admin.php in Projectworlds Car Rental Management System v1.0 allows unauthenticated remote malicious users to harvest an admin login session cookie and steal an admin session upon an admin login.
Car Rental Management System Project Car Rental Management System 1.0
6.5
CVSSv2
CVE-2022-29318
An arbitrary file upload vulnerability in the New Entry module of Car Rental Management System v1.0 allows malicious users to execute arbitrary code via a crafted PHP file.
Car Rental Management System Project Car Rental Management System 1.0
3.5
CVSSv2
CVE-2021-46005
Sourcecodester Car Rental Management System 1.0 is vulnerable to Cross Site Scripting (XSS) via vehicalorcview parameter.
Car Rental Management System Project Car Rental Management System 1.0
1 Github repository
7.5
CVSSv2
CVE-2022-32019
Car Rental Management System v1.0 is vulnerable to Arbitrary code execution via car-rental-management-system/admin/ajax.php?action=save_car.
Car Rental Management System Project Car Rental Management System 1.0
7.5
CVSSv2
CVE-2022-32020
Car Rental Management System v1.0 is vulnerable to Arbitrary code execution via ip/car-rental-management-system/admin/ajax.php?action=save_settings.
Car Rental Management System Project Car Rental Management System 1.0
6.5
CVSSv2
CVE-2022-32021
Car Rental Management System v1.0 is vulnerable to SQL Injection via /car-rental-management-system/admin/manage_movement.php?id=.
Car Rental Management System Project Car Rental Management System 1.0
6.5
CVSSv2
CVE-2022-32022
Car Rental Management System v1.0 is vulnerable to SQL Injection via /ip/car-rental-management-system/admin/ajax.php?action=login.
Car Rental Management System Project Car Rental Management System 1.0
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-7073
CVE-2024-5496
CVE-2024-5495
XPath injection
bypass
CVE-2024-30043
CVE-2024-24919
denial of service
CVE-2024-35468
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »