52 matches found
PT-2023-17767 · Sourcecodester · Sourcecodester Vehicle Service Management System
Name of the Vulnerable Software and Affected Versions: SourceCodester Vehicle Service Management System version 1.0 Description: A vulnerability was found in the SourceCodester Vehicle Service Management System, affecting some unknown functionality of the file /inc/topBarNav.php. The manipulation...
PT-2023-17789
Name of the Vulnerable Software and Affected Versions SourceCodester Vehicle Service Management System version 1.0 Description A problematic vulnerability was found in the SourceCodester Vehicle Service Management System. This issue affects the file /admin/report/index.php and is triggered by the...
Sourcecodester Vehicle Service Management System Cross-Site Scripting Vulnerability (CNVD-2022-02639)
Sourcecodester Vehicle Service Management System is an open source PHP project. A simple Web application for automotive repair/service stores or businesses. sourcecodester Vehicle Service Management System version 1.0 has a cross-site scripting vulnerability that stems from a lack of valid...
Sourcecodester Vehicle Service Management System Cross-Site Scripting Vulnerability (CNVD-2022-02640)
Sourcecodester Vehicle Service Management System is an open source PHP project. A simple Web application for automotive repair/service stores or businesses. Sourcecodester Vehicle Service Management System version 1.0 has a cross-site scripting vulnerability that stems from the vulnerability stem...
Unrestricted file upload
An Unrestricted File Upload vulnerability exists in Sourcecodester Vehicle Service Management System 1.0. A remote attacker can upload malicious files leading to Html Injection...
Privilege escalation
A Privilege Escalation vulnerability exists in Sourcecodester Vehicle Service Management System 1.0. Staff account users can access the admin resources and perform CRUD Operations...
CVE-2021-46079
An Unrestricted File Upload vulnerability exists in Sourcecodester Vehicle Service Management System 1.0. A remote attacker can upload malicious files leading to Html Injection...
CVE-2021-46073
Vehicle Service Management System 1.0 contains a Cross-Site Scripting (XSS) vulnerability in the User List section of the login panel. The root cause is insufficient input filtering/escaping in that area, enabling stored XSS. Impact per sources includes injection of malicious scripts into pages v...
CVE-2021-46076
Sourcecodester Vehicle Service Management System 1.0 is vulnerable to File upload. An attacker can upload a malicious php file in multiple endpoints it leading to Code Execution...
Unrestricted file upload
Sourcecodester Vehicle Service Management System 1.0 is vulnerable to File upload. An attacker can upload a malicious php file in multiple endpoints it leading to Code Execution...
CVE-2021-46076
Sourcecodester Vehicle Service Management System 1.0 is vulnerable to File upload. An attacker can upload a malicious php file in multiple endpoints it leading to Code Execution...
CVE-2021-41962
Cross Site Scripting XSS vulnerability exists in Sourcecodester Vehicle Service Management System 1.0 via the Owner fullname parameter in a Send Service Request in vehicleservice...