39 matches found
EUVD-2023-31403
Malicious code in bioql PyPI...
EUVD-2023-31402
Malicious code in bioql PyPI...
EUVD-2023-12901
Malicious code in bioql PyPI...
EUVD-2023-12903
Malicious code in bioql PyPI...
CVE-2023-0916
A vulnerability classified as critical was found in SourceCodester Auto Dealer Management System 1.0. Affected by this vulnerability is an unknown functionality of the file /adms/classes/Users.php. The manipulation leads to improper access controls. The attack can be launched remotely. The exploi...
CVE-2023-0913
A vulnerability classified as critical was found in SourceCodester Auto Dealer Management System 1.0. This vulnerability affects unknown code of the file /adms/admin/?page=vehicles/sellvehicle. The manipulation of the argument id leads to sql injection. The attack can be initiated remotely. The...
CVE-2023-27666
Auto Dealer Management System v1.0 was discovered to contain a cross-site scripting XSS vulnerability via the name parameter at /classes/SystemSettings.php?f=updatesettings...
CVE-2023-0912
A vulnerability classified as critical has been found in SourceCodester Auto Dealer Management System 1.0. This affects an unknown part of the file /adms/admin/?page=vehicles/viewtransaction. The manipulation of the argument id leads to sql injection. It is possible to initiate the attack remotel...
CVE-2023-0915
A vulnerability classified as critical has been found in SourceCodester Auto Dealer Management System 1.0. Affected is an unknown function of the file /adms/admin/?page=user/manageuser. The manipulation of the argument id leads to sql injection. It is possible to launch the attack remotely. The...
CVE-2023-27666
Auto Dealer Management System v1.0 was discovered to contain a cross-site scripting XSS vulnerability via the name parameter at /classes/SystemSettings.php?f=updatesettings...
CVE-2023-27666
Auto Dealer Management System v1.0 was discovered to contain a cross-site scripting XSS vulnerability via the name parameter at /classes/SystemSettings.php?f=updatesettings...
Cross site scripting
Auto Dealer Management System v1.0 was discovered to contain a cross-site scripting XSS vulnerability via the name parameter at /classes/SystemSettings.php?f=updatesettings...
CVE-2023-27666
Auto Dealer Management System v1.0 was discovered to contain a cross-site scripting XSS vulnerability via the name parameter at /classes/SystemSettings.php?f=updatesettings...
PT-2023-21291 · Unknown · Auto Dealer Management System
Name of the Vulnerable Software and Affected Versions: Auto Dealer Management System version 1.0 Description: The issue is related to a cross-site scripting XSS vulnerability. This vulnerability can be exploited via the name parameter at the "/classes/SystemSettings.php?f=update settings" API...
CVE-2023-27666
CVE-2023-27666 affects Auto Dealer Management System v1.0. The issue is a cross-site scripting (XSS) vulnerability in the name parameter of the API endpoint /classes/SystemSettings.php?f=update_settings, as described in multiple sources in the connected documents. The CVSS 3.1 metrics indicate a ...
CVE-2023-27667
Auto Dealer Management System v1.0 was discovered to contain a SQL injection vulnerability...
CVE-2023-27667
Auto Dealer Management System v1.0 was discovered to contain a SQL injection vulnerability...
Sql injection
Auto Dealer Management System v1.0 was discovered to contain a SQL injection vulnerability...
CVE-2023-27667
Auto Dealer Management System v1.0 was discovered to contain a SQL injection vulnerability...
Auto Dealer Management System SQL注入漏洞
Auto Dealer Management System is a car dealer management system by Carlo Montero Personal Developer. A security vulnerability exists in Auto Dealer Management System v1.0. An attacker can exploit this vulnerability to perform SQL injection attacks...