Lucene search
+L

52 matches found

Positive Technologies
Positive Technologies
added 2023/04/15 12:0 a.m.13 views

PT-2023-17767 · Sourcecodester · Sourcecodester Vehicle Service Management System

Name of the Vulnerable Software and Affected Versions: SourceCodester Vehicle Service Management System version 1.0 Description: A vulnerability was found in the SourceCodester Vehicle Service Management System, affecting some unknown functionality of the file /inc/topBarNav.php. The manipulation...

6.1CVSS4.3AI score0.00638EPSS
Exploits1References6
Positive Technologies
Positive Technologies
added 2023/04/15 12:0 a.m.10 views

PT-2023-17789

Name of the Vulnerable Software and Affected Versions SourceCodester Vehicle Service Management System version 1.0 Description A problematic vulnerability was found in the SourceCodester Vehicle Service Management System. This issue affects the file /admin/report/index.php and is triggered by the...

6.1CVSS4.8AI score0.00638EPSS
Exploits1References7
CNVD
CNVD
added 2022/01/07 12:0 a.m.38 views

Sourcecodester Vehicle Service Management System Cross-Site Scripting Vulnerability (CNVD-2022-02639)

Sourcecodester Vehicle Service Management System is an open source PHP project. A simple Web application for automotive repair/service stores or businesses. sourcecodester Vehicle Service Management System version 1.0 has a cross-site scripting vulnerability that stems from a lack of valid...

4.8CVSS3.1AI score0.02736EPSS
Exploits1References1
CNVD
CNVD
added 2022/01/07 12:0 a.m.46 views

Sourcecodester Vehicle Service Management System Cross-Site Scripting Vulnerability (CNVD-2022-02640)

Sourcecodester Vehicle Service Management System is an open source PHP project. A simple Web application for automotive repair/service stores or businesses. Sourcecodester Vehicle Service Management System version 1.0 has a cross-site scripting vulnerability that stems from the vulnerability stem...

4.8CVSS1.7AI score0.02736EPSS
Exploits1References1
Prion
Prion
added 2022/01/06 4:15 p.m.28 views

Unrestricted file upload

An Unrestricted File Upload vulnerability exists in Sourcecodester Vehicle Service Management System 1.0. A remote attacker can upload malicious files leading to Html Injection...

6.5CVSS6.9AI score0.03309EPSS
Exploits1References2Affected Software1
Prion
Prion
added 2022/01/06 4:15 p.m.20 views

Privilege escalation

A Privilege Escalation vulnerability exists in Sourcecodester Vehicle Service Management System 1.0. Staff account users can access the admin resources and perform CRUD Operations...

6.5CVSS6.9AI score0.02616EPSS
Exploits2References2Affected Software1
Cvelist
Cvelist
added 2022/01/06 3:59 p.m.34 views

CVE-2021-46079

An Unrestricted File Upload vulnerability exists in Sourcecodester Vehicle Service Management System 1.0. A remote attacker can upload malicious files leading to Html Injection...

7.2AI score0.03309EPSS
Exploits1References2
CVE
CVE
added 2022/01/06 3:25 p.m.77 views

CVE-2021-46073

Vehicle Service Management System 1.0 contains a Cross-Site Scripting (XSS) vulnerability in the User List section of the login panel. The root cause is insufficient input filtering/escaping in that area, enabling stored XSS. Impact per sources includes injection of malicious scripts into pages v...

4.8CVSS4.8AI score0.02759EPSS
Exploits1References2Affected Software1
NVD
NVD
added 2022/01/06 3:15 p.m.18 views

CVE-2021-46076

Sourcecodester Vehicle Service Management System 1.0 is vulnerable to File upload. An attacker can upload a malicious php file in multiple endpoints it leading to Code Execution...

8.8CVSS0.03306EPSS
Exploits1References2
Prion
Prion
added 2022/01/06 3:15 p.m.21 views

Unrestricted file upload

Sourcecodester Vehicle Service Management System 1.0 is vulnerable to File upload. An attacker can upload a malicious php file in multiple endpoints it leading to Code Execution...

6.5CVSS8.6AI score0.03306EPSS
Exploits1References2Affected Software1
Cvelist
Cvelist
added 2022/01/06 2:53 p.m.29 views

CVE-2021-46076

Sourcecodester Vehicle Service Management System 1.0 is vulnerable to File upload. An attacker can upload a malicious php file in multiple endpoints it leading to Code Execution...

8.9AI score0.03306EPSS
Exploits1References2
NVD
NVD
added 2021/12/16 6:15 p.m.14 views

CVE-2021-41962

Cross Site Scripting XSS vulnerability exists in Sourcecodester Vehicle Service Management System 1.0 via the Owner fullname parameter in a Send Service Request in vehicleservice...

4.8CVSS0.006EPSS
Exploits1References1
Rows per page
Query Builder