4 matches found
CVE-2024-27744
Cross Site Scripting vulnerability in Petrol Pump Mangement Software v.1.0 allows an attacker to execute arbitrary code via a crafted payload to the image parameter in the profile.php component...
Petrol Pump Management Software v.1.0 - Stored Cross Site Scripting via SVG file Vulnerability
Exploit Title: Petrol Pump Management Software v.1.0 - Stored Cross Site Scripting via SVG file Exploit Author: Shubham Pandey Vendor Homepage: https://www.sourcecodester.com Software Link: https://www.sourcecodester.com/php/17180/petrol-pump-management-software-free-download.html Version: 1.0...
Petrol Pump Management Software 1.0 Cross Site Scripting
Exploit Title: Cross Site Scripting vulnerability in Petrol Pump Management Software v.1.0 Date: 01-03-2024 Exploit Author: Shubham Pandey Vendor Homepage: https://www.sourcecodester.com Software Link: https://www.sourcecodester.com/php/17180/petrol-pump-management-software-free-download.html...
CVE-2024-27744
CVE-2024-27744 is a stored Cross-Site Scripting vulnerability in Petrol Pump Management Software v1.0. The issue arises from user-supplied input to the image parameter in profile.php, enabling an attacker to execute arbitrary code when the crafted payload is processed (e.g., SVG uploads). Public ...