PT-2026-30579

A vulnerability was identified in projectworlds Car Rental Project 1.0. Affected by this vulnerability is an unknown functionality of the file /book car.php of the component Parameter Handler. The manipulation of the argument fname leads to sql injection. The attack can be initiated remotely. The...

Adobe ColdFusion CAR File Parsing Directory Traversal Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Adobe ColdFusion. Authentication is required to exploit this vulnerability. The specific flaw exists within the parsing of CAR files. The issue results from the lack of proper validation of a...

Car Rental System book_car.php File SQL Injection Vulnerability

Car Rental System is a car rental system. Car Rental System suffers from a SQL injection vulnerability that originates from the lack of validation of an externally entered SQL statement in the parameter fname in the file /bookcar.php. The vulnerability can be exploited to execute illegal SQL...

Denial Of Service

go-ipfs nodes are vulnerable to Denial of Service when importing malformed CAR files. Importing a malformed CAR can exhaust all available memory...