64 matches found
CVE-2025-60306
code-projects Simple Car Rental System 1.0 has a permission bypass issue where low privilege users can forge high privilege sessions and perform sensitive operations...
CVE-2025-60306
code-projects Simple Car Rental System 1.0 has a permission bypass issue where low privilege users can forge high privilege sessions and perform sensitive operations...
EUVD-2024-33256
Malicious code in bioql PyPI...
EUVD-2025-21223
Malicious code in bioql PyPI...
EUVD-2024-34084
Malicious code in bioql PyPI...
EUVD-2024-51209
Malicious code in bioql PyPI...
EUVD-2025-23209
Malicious code in bioql PyPI...
EUVD-2025-21220
Malicious code in bioql PyPI...
EUVD-2024-33923
Malicious code in bioql PyPI...
EUVD-2025-23207
Malicious code in bioql PyPI...
CVE-2025-8337
A vulnerability, which was classified as problematic, has been found in code-projects Simple Car Rental System 1.0. This issue affects some unknown processing of the file /admin/addvehicles.php. The manipulation of the argument carname leads to cross site scripting. The attack may be initiated...
CVE-2025-8335
A vulnerability classified as problematic has been found in code-projects Simple Car Rental System 1.0. This affects an unknown part. The manipulation leads to cross-site request forgery. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used...
CVE-2025-8337
A vulnerability, which was classified as problematic, has been found in code-projects Simple Car Rental System 1.0. This issue affects some unknown processing of the file /admin/addvehicles.php. The manipulation of the argument carname leads to cross site scripting. The attack may be initiated...
CVE-2025-8337 code-projects Simple Car Rental System add_vehicles.php cross site scripting
A vulnerability, which was classified as problematic, has been found in code-projects Simple Car Rental System 1.0. This issue affects some unknown processing of the file /admin/addvehicles.php. The manipulation of the argument carname leads to cross site scripting. The attack may be initiated...
CVE-2025-8337 code-projects Simple Car Rental System add_vehicles.php cross site scripting
A vulnerability, which was classified as problematic, has been found in code-projects Simple Car Rental System 1.0. This issue affects some unknown processing of the file /admin/addvehicles.php. The manipulation of the argument carname leads to cross site scripting. The attack may be initiated...
CVE-2025-8337
CVE-2025-8337 affects Code-Projects Simple Car Rental System 1.0. The vulnerability is in the file /admin/add_vehicles.php where manipulation of the car_name argument can lead to a cross-site scripting (XSS) vulnerability. The attack can be initiated remotely and exploits have been publicly discl...
CVE-2025-8335
A vulnerability classified as problematic has been found in code-projects Simple Car Rental System 1.0. This affects an unknown part. The manipulation leads to cross-site request forgery. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used...
CVE-2025-8335 code-projects Simple Car Rental System cross-site request forgery
A vulnerability classified as problematic has been found in code-projects Simple Car Rental System 1.0. This affects an unknown part. The manipulation leads to cross-site request forgery. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used...
CVE-2025-8335
The CVE-2025-8335 entry concerns code-projects Simple Car Rental System 1.0, with a cross-site request forgery flaw affecting an unknown part of the software. Connected sources (PT-2025-31451, Red Hat, CVE listings) confirm the vulnerability can be initiated remotely and that an exploit has been ...
CVE-2025-8335 code-projects Simple Car Rental System cross-site request forgery
A vulnerability classified as problematic has been found in code-projects Simple Car Rental System 1.0. This affects an unknown part. The manipulation leads to cross-site request forgery. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used...