575 matches found
CVE-2024-51031
A Cross-site Scripting XSS vulnerability in manageaccount.php in Sourcecodester Cab Management System 1.0 allows remote authenticated users to inject arbitrary web scripts via the "First Name," "Middle Name," and "Last Name" fields...
CVE-2023-28533
Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in M Williams Cab Grid plugin = 1.5.15 versions...
CVE-2022-1391
The Cab fare calculator WordPress plugin before 1.0.4 does not validate the controller parameter before using it in require statements, which could lead to Local File Inclusion issues...
CVE-2022-30262
The Emerson ControlWave 'Next Generation' RTUs through 2022-05-02 mishandle firmware integrity. They utilize the BSAP-IP protocol to transmit firmware updates. Firmware updates are supplied as CAB archive files containing a binary firmware image. In all cases, firmware images were found to have n...
CVE-2012-1451
The CAB file parser in Emsisoft Anti-Malware 5.1.0.1 and Ikarus Virus Utilities T3 Command Line Scanner 1.1.97.0 allows remote attackers to bypass malware detection via a CAB file with a modified reserved2 field. NOTE: this may later be SPLIT into multiple CVEs if additional information is...
BELL-CVE-2025-37870
Bulletin has no description...
Security Bulletin: Potential Oracle Outside In Technology Vulnerabilities Exposed in ECM Products (CVE-2011-2264, CVE-2011-0794, and CVE-2011-0808)
Question Oracle Outside In Technology contains exploitable vulnerabilities in the CorelDRAW CVE-2011-2264 file parser, the File ID SDK CVE-2011-0794, and file filters CVE-2011-0808. Each of these vulnerabilities may allow a remote, unauthenticated user to execute arbitrary code on a vulnerable...
CVE-2025-23982
Missing Authorization vulnerability in Gopi krishnan Fare Calculator fare-calculator allows Stored XSS.This issue affects Fare Calculator: from n/a through = 1.1...
CVE-2025-23982
CVE-2025-23982 concerns the WordPress Fare Calculator plugin, affected versions are n/a through 1.1. The issue is a Missing Authorization vulnerability enabling CSRF to Stored Cross-Site Scripting (Stored XSS) in the cab fare calculator. Base metrics from CVSS 3.1 indicate HIGH risk (7.1) with ne...
WordPress plugin Cab fare calculator 安全漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security vulnerability...
PT-2025-5244 · Unknown · Marian Kanev Cab Fare Calculator
Name of the Vulnerable Software and Affected Versions: Marian Kanev Cab fare calculator versions n/a through 1.1 Description: The issue is related to a Missing Authorization vulnerability that allows Stored XSS in the Marian Kanev Cab fare calculator. Recommendations: For versions n/a through 1.1...
CVE-2024-51031
A Cross-site Scripting XSS vulnerability in manageaccount.php in Sourcecodester Cab Management System 1.0 allows remote authenticated users to inject arbitrary web scripts via the "First Name," "Middle Name," and "Last Name" fields...
CVE-2024-51030
A SQL injection vulnerability in manageclient.php and viewcab.php of Sourcecodester Cab Management System 1.0 allows remote attackers to execute arbitrary SQL commands via the id parameter, leading to unauthorized access and potential compromise of sensitive data within the database...
CVE-2024-51031
A Cross-site Scripting XSS vulnerability in manageaccount.php in Sourcecodester Cab Management System 1.0 allows remote authenticated users to inject arbitrary web scripts via the "First Name," "Middle Name," and "Last Name" fields...
CVE-2024-51030
A SQL injection vulnerability in manageclient.php and viewcab.php of Sourcecodester Cab Management System 1.0 allows remote attackers to execute arbitrary SQL commands via the id parameter, leading to unauthorized access and potential compromise of sensitive data within the database...
CVE-2024-51031
A Cross-site Scripting XSS vulnerability in manageaccount.php in Sourcecodester Cab Management System 1.0 allows remote authenticated users to inject arbitrary web scripts via the "First Name," "Middle Name," and "Last Name" fields...
Sourcecodester Cab Management System 安全漏洞
Sourcecodester Cab Management System is an open source cab management system from Sourcecodester. A security vulnerability exists in Sourcecodester Cab Management System version 1.0, which originates from an SQL injection vulnerability contained in the id parameter in manageclient.php and...
PT-2024-34496 · Sourcecodester · Sourcecodester Loan Management System
Name of the Vulnerable Software and Affected Versions: Sourcecodester Cab Management System version 1.0 Description: A SQL injection issue in manage client.php and view cab.php allows remote attackers to execute arbitrary SQL commands via the id parameter, leading to unauthorized access and...
Sourcecodester Cab Management System 安全漏洞
Sourcecodester Cab Management System is an open source cab management system from Sourcecodester. A security vulnerability exists in version 1.0 of the Sourcecodester Cab Management System, which stems from a cross-site scripting vulnerability in the First Name, Middle Name, and Last Name...
CVE-2024-51030
Sourcecodester Cab Management System 1.0 has a SQL injection in manage_client.php and view_cab.php that can be exploited via the id parameter to execute arbitrary SQL. Affected scripts: manage_client.php, view_cab.php. Root cause: unsanitized id parameter enabling SQL injection with high confiden...