Lucene search
K

31 matches found

NVD
NVD
added 2026/03/12 4:16 p.m.3 views

CVE-2019-25482

Jettweb PHP Hazir Rent A Car Sitesi Scripti V2 contains an SQL injection vulnerability that allows unauthenticated attackers to manipulate database queries by injecting SQL code through the arackategoriid parameter. Attackers can send POST requests to the endpoint with malicious SQL payloads to...

8.8CVSS0.00367EPSS
Exploits1References2
Vulnrichment
Vulnrichment
added 2026/03/12 3:36 p.m.3 views

CVE-2019-25482 Jettweb PHP Hazir Rent A Car Sitesi Scripti V2 SQL Injection

Jettweb PHP Hazir Rent A Car Sitesi Scripti V2 contains an SQL injection vulnerability that allows unauthenticated attackers to manipulate database queries by injecting SQL code through the arackategoriid parameter. Attackers can send POST requests to the endpoint with malicious SQL payloads to...

8.8CVSS6AI score0.00367EPSS
Exploits1References2
Cvelist
Cvelist
added 2026/03/12 3:36 p.m.28 views

CVE-2019-25482 Jettweb PHP Hazir Rent A Car Sitesi Scripti V2 SQL Injection

Jettweb PHP Hazir Rent A Car Sitesi Scripti V2 contains an SQL injection vulnerability that allows unauthenticated attackers to manipulate database queries by injecting SQL code through the arackategoriid parameter. Attackers can send POST requests to the endpoint with malicious SQL payloads to...

8.8CVSS0.00367EPSS
Exploits1References2
Positive Technologies
Positive Technologies
added 2026/03/12 12:0 a.m.4 views

PT-2026-24966

Jettweb PHP Hazir Rent A Car Sitesi Scripti V2 contains an SQL injection vulnerability that allows unauthenticated attackers to manipulate database queries by injecting SQL code through the arac kategori id parameter. Attackers can send POST requests to the endpoint with malicious SQL payloads to...

8.8CVSS5.9AI score0.00367EPSS
Exploits1References3
RedhatCVE
RedhatCVE
added 2026/02/23 7:25 p.m.4 views

CVE-2019-25462

Web Ofisi Rent a Car v3 contains an SQL injection vulnerability that allows unauthenticated attackers to manipulate database queries by injecting SQL code through the 'klima' parameter. Attackers can send GET requests to with malicious 'klima' values to extract sensitive database information or...

8.8CVSS5.7AI score0.00262EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2026/02/22 2:12 p.m.4 views

CVE-2019-25462 Web Ofisi Rent a Car v3 SQL Injection via klima Parameter

Web Ofisi Rent a Car v3 contains an SQL injection vulnerability that allows unauthenticated attackers to manipulate database queries by injecting SQL code through the 'klima' parameter. Attackers can send GET requests to with malicious 'klima' values to extract sensitive database information or...

8.8CVSS5.8AI score0.00262EPSS
Exploits0References3
Cvelist
Cvelist
added 2026/02/22 2:12 p.m.25 views

CVE-2019-25462 Web Ofisi Rent a Car v3 SQL Injection via klima Parameter

Web Ofisi Rent a Car v3 contains an SQL injection vulnerability that allows unauthenticated attackers to manipulate database queries by injecting SQL code through the 'klima' parameter. Attackers can send GET requests to with malicious 'klima' values to extract sensitive database information or...

8.8CVSS0.00262EPSS
Exploits0References3
CVE
CVE
added 2026/02/22 2:12 p.m.12 views

CVE-2019-25462

The CVE covers Web Ofisi Rent a Car v3, where an SQL injection flaw exists in the klima parameter. The vulnerability allows unauthenticated attackers to manipulate database queries via GET requests, potentially extracting sensitive data or causing denial of service. Root cause is improper handlin...

8.8CVSS6AI score0.00262EPSS
Exploits0References3
CNNVD
CNNVD
added 2026/02/22 12:0 a.m.10 views

Web Ofisi Rent a Car SQL注入漏洞

Web Ofisi Rent a Car is an online management and rental system operated by the Turkish company Web Ofisi. Version 3 of Web Ofisi Rent a Car has a SQL injection vulnerability, which stems from insufficient validation of the klima parameter input. This vulnerability may lead to SQL injection attack...

8.8CVSS5.9AI score0.00262EPSS
Exploits0References4
Openbugbounty
Openbugbounty
added 2023/05/10 12:41 p.m.13 views

rent-a-car-podgorica.com Cross Site Scripting vulnerability OBB-3316846

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

6.1AI score
Exploits0
Packet Storm
Packet Storm
added 2023/01/18 12:0 a.m.216 views

Jettweb Ready Rent A Car Script 4 Cross Site Scripting

┌┌───────────────────────────────────────────────────────────────────────────────────────┐ ││ C r a C k E r ┌┘ ┌┘ T H E C R A C K O F E T E R N A L M I G H T ││ └───────────────────────────────────────────────────────────────────────────────────────┘┘ ┌──── From The Ashes and Dust Rises An...

7.4AI score
Exploits0
Openbugbounty
Openbugbounty
added 2021/09/29 6:44 a.m.12 views

coskunrentacar.com Cross Site Scripting vulnerability OBB-2152209

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: &nbsp&nbsp&nbsp&nbsp&nbsp&nbspa. verified the vulnerability and confirmed its existence; &nbsp&nbsp&nbsp&nbsp&nbsp&nbspb. notified the website operator about its existence...

Exploits0
Openbugbounty
Openbugbounty
added 2020/11/07 5:0 p.m.25 views

olympicrentacar.gr Cross Site Scripting vulnerability OBB-1491733

Following coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: &nbsp&nbsp&nbsp&nbsp&nbsp&nbspa. verified the vulnerability and confirmed its existence; &nbsp&nbsp&nbsp&nbsp&nbsp&nbspb. notified the website operator about its existence...

Exploits0
Openbugbounty
Openbugbounty
added 2020/10/20 12:28 p.m.6 views

madisonrentacar.com.ar Cross Site Scripting vulnerability OBB-1428902

Following coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: &nbsp&nbsp&nbsp&nbsp&nbsp&nbspa. verified the vulnerability and confirmed its existence; &nbsp&nbsp&nbsp&nbsp&nbsp&nbspb. notified the website operator about its existence...

6.2AI score
Exploits0
Openbugbounty
Openbugbounty
added 2020/08/27 1:37 p.m.9 views

ctgrentacar.com Cross Site Scripting vulnerability OBB-1280764

Following coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: &nbsp&nbsp&nbsp&nbsp&nbsp&nbspa. verified the vulnerability and confirmed its existence; &nbsp&nbsp&nbsp&nbsp&nbsp&nbspb. notified the website operator about its existence...

6.2AI score
Exploits0
Packet Storm
Packet Storm
added 2019/07/19 12:0 a.m.245 views

Web Ofisi Rent A Car 3 SQL Injection

Exploit Title: Web Ofisi Rent a Car 3 - 'klima' SQL Injection Date: 2019-07-19 Exploit Author: Ahmet Ümit BAYRAM Vendor: https://www.web-ofisi.com/detay/rent-a-car-v3.html Demo Site: http://demobul.net/rentacarv3/ Version: v3 Tested on: Kali Linux CVE: N/A ----- PoC 1: SQLi ----- Request:...

7.4AI score
Exploits0
exploitpack
exploitpack
added 2019/07/19 12:0 a.m.19 views

Web Ofisi Rent a Car 3 - klima SQL Injection

Web Ofisi Rent a Car 3 - klima SQL Injection Exploit Title: Web Ofisi Rent a Car 3 - 'klima' SQL Injection Date: 2019-07-19 Exploit Author: Ahmet Ümit BAYRAM Vendor: https://www.web-ofisi.com/detay/rent-a-car-v3.html Demo Site: http://demobul.net/rentacarv3/ Version: v3 Tested on: Kali Linux CVE:...

0.2AI score
Exploits0
Exploit DB
Exploit DB
added 2019/07/19 12:0 a.m.162 views

Web Ofisi Rent a Car 3 - 'klima' SQL Injection

Exploit Title: Web Ofisi Rent a Car 3 - 'klima' SQL Injection Date: 2019-07-19 Exploit Author: Ahmet Ümit BAYRAM Vendor: https://www.web-ofisi.com/detay/rent-a-car-v3.html Demo Site: http://demobul.net/rentacarv3/ Version: v3 Tested on: Kali Linux CVE: N/A ----- PoC 1: SQLi ----- Request:...

7.4AI score
Exploits0
Packet Storm
Packet Storm
added 2019/03/29 12:0 a.m.24 views

Jettweb PHP Hazir Rent A Car Sitesi Scripti 2 SQL Injection

Exploit Title: Jettweb PHP Hazır Rent A Car Sitesi Scripti V2 - 'arackategoriid' SQL Injection Date: 28.03.2019 Exploit Author: Ahmet Ümit BAYRAM Vendor Homepage: https://jettweb.net/u-4-php-hazir-rent-a-car-sitesi-scripti-v2.html Demo Site: http://rentv2.proemlaksitesi.net/ Version: V2 Tested on...

0.2AI score
Exploits0
exploitpack
exploitpack
added 2019/03/28 12:0 a.m.22 views

Jettweb PHP Hazır Rent A Car Sitesi Scripti V2 - arac_kategori_id SQL Injection

Jettweb PHP Hazır Rent A Car Sitesi Scripti V2 - arackategoriid SQL Injection Exploit Title: Jettweb PHP Hazır Rent A Car Sitesi Scripti V2 - 'arackategoriid' SQL Injection Date: 28.03.2019 Exploit Author: Ahmet Ümit BAYRAM Vendor Homepage:...

0.2AI score
Exploits0
Rows per page
Query Builder