Lucene search
K

575 matches found

RedhatCVE
RedhatCVE
added 2025/05/23 8:3 a.m.8 views

CVE-2024-51031

A Cross-site Scripting XSS vulnerability in manageaccount.php in Sourcecodester Cab Management System 1.0 allows remote authenticated users to inject arbitrary web scripts via the "First Name," "Middle Name," and "Last Name" fields...

5.4CVSS5.7AI score0.00396EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 3:36 a.m.17 views

CVE-2023-28533

Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in M Williams Cab Grid plugin = 1.5.15 versions...

5.9CVSS5.6AI score0.00389EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 11:30 p.m.15 views

CVE-2022-1391

The Cab fare calculator WordPress plugin before 1.0.4 does not validate the controller parameter before using it in require statements, which could lead to Local File Inclusion issues...

9.8CVSS6.8AI score0.13592EPSS
Exploits2References1
RedhatCVE
RedhatCVE
added 2025/05/22 10:6 p.m.9 views

CVE-2022-30262

The Emerson ControlWave 'Next Generation' RTUs through 2022-05-02 mishandle firmware integrity. They utilize the BSAP-IP protocol to transmit firmware updates. Firmware updates are supplied as CAB archive files containing a binary firmware image. In all cases, firmware images were found to have n...

7.8CVSS7.3AI score0.00171EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 12:14 p.m.12 views

CVE-2012-1451

The CAB file parser in Emsisoft Anti-Malware 5.1.0.1 and Ikarus Virus Utilities T3 Command Line Scanner 1.1.97.0 allows remote attackers to bypass malware detection via a CAB file with a modified reserved2 field. NOTE: this may later be SPLIT into multiple CVEs if additional information is...

4.3CVSS6.9AI score0.67613EPSS
Exploits0References1
OSV
OSV
added 2025/05/10 5:59 a.m.1 views

BELL-CVE-2025-37870

Bulletin has no description...

5.5CVSS7.5AI score0.00226EPSS
Exploits0References1
IBM Security Bulletins
IBM Security Bulletins
added 2025/04/29 1:58 a.m.39 views

Security Bulletin: Potential Oracle Outside In Technology Vulnerabilities Exposed in ECM Products (CVE-2011-2264, CVE-2011-0794, and CVE-2011-0808)

Question Oracle Outside In Technology contains exploitable vulnerabilities in the CorelDRAW CVE-2011-2264 file parser, the File ID SDK CVE-2011-0794, and file filters CVE-2011-0808. Each of these vulnerabilities may allow a remote, unauthenticated user to execute arbitrary code on a vulnerable...

4.4CVSS7.1AI score0.31114EPSS
Exploits4Affected Software15
NVD
NVD
added 2025/01/27 3:15 p.m.5 views

CVE-2025-23982

Missing Authorization vulnerability in Gopi krishnan Fare Calculator fare-calculator allows Stored XSS.This issue affects Fare Calculator: from n/a through = 1.1...

7.1CVSS0.00284EPSS
Exploits0References1
CVE
CVE
added 2025/01/27 2:22 p.m.47 views

CVE-2025-23982

CVE-2025-23982 concerns the WordPress Fare Calculator plugin, affected versions are n/a through 1.1. The issue is a Missing Authorization vulnerability enabling CSRF to Stored Cross-Site Scripting (Stored XSS) in the cab fare calculator. Base metrics from CVSS 3.1 indicate HIGH risk (7.1) with ne...

7.1CVSS7.2AI score0.00284EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/01/27 12:0 a.m.2 views

WordPress plugin Cab fare calculator 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security vulnerability...

7.1CVSS8.6AI score0.00284EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/01/27 12:0 a.m.1 views

PT-2025-5244 · Unknown · Marian Kanev Cab Fare Calculator

Name of the Vulnerable Software and Affected Versions: Marian Kanev Cab fare calculator versions n/a through 1.1 Description: The issue is related to a Missing Authorization vulnerability that allows Stored XSS in the Marian Kanev Cab fare calculator. Recommendations: For versions n/a through 1.1...

7.1CVSS8.9AI score0.00284EPSS
Exploits0References3
OSV
OSV
added 2024/11/08 6:15 p.m.3 views

CVE-2024-51031

A Cross-site Scripting XSS vulnerability in manageaccount.php in Sourcecodester Cab Management System 1.0 allows remote authenticated users to inject arbitrary web scripts via the "First Name," "Middle Name," and "Last Name" fields...

5.4CVSS5.9AI score0.00396EPSS
Exploits0References2
NVD
NVD
added 2024/11/08 6:15 p.m.26 views

CVE-2024-51030

A SQL injection vulnerability in manageclient.php and viewcab.php of Sourcecodester Cab Management System 1.0 allows remote attackers to execute arbitrary SQL commands via the id parameter, leading to unauthorized access and potential compromise of sensitive data within the database...

6.5CVSS0.00676EPSS
Exploits0References2
NVD
NVD
added 2024/11/08 6:15 p.m.32 views

CVE-2024-51031

A Cross-site Scripting XSS vulnerability in manageaccount.php in Sourcecodester Cab Management System 1.0 allows remote authenticated users to inject arbitrary web scripts via the "First Name," "Middle Name," and "Last Name" fields...

5.4CVSS0.00396EPSS
Exploits0References2
OSV
OSV
added 2024/11/08 6:15 p.m.4 views

CVE-2024-51030

A SQL injection vulnerability in manageclient.php and viewcab.php of Sourcecodester Cab Management System 1.0 allows remote attackers to execute arbitrary SQL commands via the id parameter, leading to unauthorized access and potential compromise of sensitive data within the database...

6.5CVSS6.1AI score0.00676EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2024/11/08 12:0 a.m.10 views

CVE-2024-51031

A Cross-site Scripting XSS vulnerability in manageaccount.php in Sourcecodester Cab Management System 1.0 allows remote authenticated users to inject arbitrary web scripts via the "First Name," "Middle Name," and "Last Name" fields...

5.6AI score0.00396EPSS
Exploits0References2
CNNVD
CNNVD
added 2024/11/08 12:0 a.m.3 views

Sourcecodester Cab Management System 安全漏洞

Sourcecodester Cab Management System is an open source cab management system from Sourcecodester. A security vulnerability exists in Sourcecodester Cab Management System version 1.0, which originates from an SQL injection vulnerability contained in the id parameter in manageclient.php and...

6.5CVSS8AI score0.00676EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2024/11/08 12:0 a.m.4 views

PT-2024-34496 · Sourcecodester · Sourcecodester Loan Management System

Name of the Vulnerable Software and Affected Versions: Sourcecodester Cab Management System version 1.0 Description: A SQL injection issue in manage client.php and view cab.php allows remote attackers to execute arbitrary SQL commands via the id parameter, leading to unauthorized access and...

6.5CVSS8.7AI score0.00676EPSS
Exploits0References7
CNNVD
CNNVD
added 2024/11/08 12:0 a.m.5 views

Sourcecodester Cab Management System 安全漏洞

Sourcecodester Cab Management System is an open source cab management system from Sourcecodester. A security vulnerability exists in version 1.0 of the Sourcecodester Cab Management System, which stems from a cross-site scripting vulnerability in the First Name, Middle Name, and Last Name...

5.4CVSS6AI score0.00396EPSS
Exploits0References2
CVE
CVE
added 2024/11/08 12:0 a.m.59 views

CVE-2024-51030

Sourcecodester Cab Management System 1.0 has a SQL injection in manage_client.php and view_cab.php that can be exploited via the id parameter to execute arbitrary SQL. Affected scripts: manage_client.php, view_cab.php. Root cause: unsanitized id parameter enabling SQL injection with high confiden...

6.5CVSS8.7AI score0.00676EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder