2 matches found
CVE-2020-11545
Project Worlds Official Car Rental System 1 is vulnerable to multiple SQL injection issues, as demonstrated by the email and parameters account.php, uname and pass parameters login.php, and id parameter bookcar.php This allows an attacker to dump the MySQL database and to bypass the login...
CVE-2020-11545
CVE-2020-11545 affects Project Worlds Official Car Rental System 1, where multiple SQL injection flaws exist in PHP/MySQL components (e.g., account.php, login.php, book_car.php). The described impact is database data exposure (dump of MySQL data) and bypass of login authentication. Root cause ind...