Lucene search
K

1960 matches found

Nuclei
Nuclei
added 10 hours ago43 views

Car Rental Management System 1.0 - Local File Inclusion

Car Rental Management System 1.0 allows an unauthenticated user to perform a file inclusion attack against the /index.php file with a partial filename in the "page" parameter, leading to code execution. id: CVE-2020-29227 info: name: Car Rental Management System 1.0 - Local File Inclusion author:...

9.8CVSS7.7AI score0.16822EPSS
Exploits1References5
Nuclei
Nuclei
added 10 hours ago25 views

Car Rental Management System 1.0 - SQL Injection

Car Rental Management System 1.0 contains an SQL injection vulnerability via /admin/manageuser.php?id=. An attacker can possibly obtain sensitive information from a database, modify data, and execute unauthorized administrative operations in the context of the affected site. id: CVE-2022-32028...

7.2CVSS7.2AI score0.04919EPSS
Exploits1References3
Nuclei
Nuclei
added 10 hours ago41 views

Sourcecodester Car Rental Management System 1.0 - Stored Cross-Site Scripting

Sourcecodester Car Rental Management System 1.0 is vulnerable to cross-site scripting via the vehicalorcview parameter. id: CVE-2021-46005 info: name: Sourcecodester Car Rental Management System 1.0 - Stored Cross-Site Scripting author: cckuailong severity: medium description: Sourcecodester Car...

5.4CVSS5.8AI score0.02915EPSS
Exploits1References5
NVD
NVD
added 6 days ago8 views

CVE-2026-57660

Unauthenticated Broken Access Control in Booking and Rental Manager = 2.7.1 versions...

5.3CVSS0.00176EPSS
Exploits0References1
EUVD
EUVD
added 6 days ago5 views

EUVD-2026-39665

Unauthenticated Broken Access Control in Booking and Rental Manager = 2.7.1 versions...

5.3CVSS5.8AI score0.00176EPSS
Exploits0References1
CVE
CVE
added 6 days ago14 views

CVE-2026-57660

The CVE-2026-57660 entry is supported by connected documents showing an Unauthenticated Broken Access Control flaw in the WordPress Booking and Rental Manager plugin, affecting versions

5.3CVSS5.8AI score0.00176EPSS
Exploits0References1
Patchstack
Patchstack
added 6 days ago7 views

WordPress Booking and Rental Manager plugin <= 2.7.1 - Broken Access Control vulnerability

Broken Access Control vulnerability discovered by Averon Averenkov in WordPress Plugin Booking and Rental Manager versions = 2.7.1...

5.3CVSS5.8AI score0.00176EPSS
Exploits0Affected Software1
NVD
NVD
added 2026/06/21 6:16 a.m.9 views

CVE-2026-12776

A flaw has been found in Montodel House-Rental-Management up to 90010017b81265eb1ef3810268909f7719a33863. This affects an unknown part of the file /index.php?page=houses. This manipulation of the argument ID causes sql injection. The attack is possible to be carried out remotely. The exploit has...

6.5CVSS0.00192EPSS
Exploits0References5
NVD
NVD
added 2026/06/21 6:16 a.m.12 views

CVE-2026-12775

A vulnerability was detected in Montodel House-Rental-Management up to 90010017b81265eb1ef3810268909f7719a33863. Affected by this issue is some unknown functionality of the file /login.php. The manipulation of the argument Username results in sql injection. The attack can be executed remotely. Th...

7.5CVSS0.00259EPSS
Exploits0References5
EUVD
EUVD
added 2026/06/21 4:45 a.m.9 views

EUVD-2026-38142

A flaw has been found in Montodel House-Rental-Management up to 90010017b81265eb1ef3810268909f7719a33863. This affects an unknown part of the file /index.php?page=houses. This manipulation of the argument ID causes sql injection. The attack is possible to be carried out remotely. The exploit has...

6.5CVSS5.6AI score0.00192EPSS
Exploits0References5
Cvelist
Cvelist
added 2026/06/21 4:45 a.m.29 views

CVE-2026-12776 Montodel House-Rental-Management index.php houses sql injection

A flaw has been found in Montodel House-Rental-Management up to 90010017b81265eb1ef3810268909f7719a33863. This affects an unknown part of the file /index.php?page=houses. This manipulation of the argument ID causes sql injection. The attack is possible to be carried out remotely. The exploit has...

6.5CVSS0.00192EPSS
Exploits0References5
CVE
CVE
added 2026/06/21 4:45 a.m.21 views

CVE-2026-12776

Montodel House-Rental-Management is affected by an SQL injection in /index.php?page=houses triggered by manipulating the ID parameter. The flaw affects the application as a whole with a remote-access exploit published and the vendor pursuing a rolling-release strategy, making exact affected versi...

6.5CVSS6.3AI score0.00192EPSS
Exploits0References5
ATTACKERKB
ATTACKERKB
added 2026/06/21 4:0 a.m.6 views

CVE-2026-12775

A vulnerability was detected in Montodel House-Rental-Management up to 90010017b81265eb1ef3810268909f7719a33863. Affected by this issue is some unknown functionality of the file /login.php. The manipulation of the argument Username results in sql injection. The attack can be executed remotely. Th...

7.5CVSS5.7AI score0.00259EPSS
Exploits0References5
EUVD
EUVD
added 2026/06/21 4:0 a.m.8 views

EUVD-2026-38141

A vulnerability was detected in Montodel House-Rental-Management up to 90010017b81265eb1ef3810268909f7719a33863. Affected by this issue is some unknown functionality of the file /login.php. The manipulation of the argument Username results in sql injection. The attack can be executed remotely. Th...

7.5CVSS5.7AI score0.00259EPSS
Exploits0References5
Cvelist
Cvelist
added 2026/06/21 4:0 a.m.33 views

CVE-2026-12775 Montodel House-Rental-Management login.php sql injection

A vulnerability was detected in Montodel House-Rental-Management up to 90010017b81265eb1ef3810268909f7719a33863. Affected by this issue is some unknown functionality of the file /login.php. The manipulation of the argument Username results in sql injection. The attack can be executed remotely. Th...

7.5CVSS0.00259EPSS
Exploits0References5
CVE
CVE
added 2026/06/21 4:0 a.m.18 views

CVE-2026-12775

CVE-2026-12775 affects Montodel House-Rental-Management, with the vulnerability in the /login.php script. The issue arises from manipulating the Username argument, which leads to an SQL injection. Attacks can be conducted remotely, and public exploitation is indicated. The affected software uses ...

7.5CVSS6.9AI score0.00259EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2026/06/21 12:0 a.m.16 views

PT-2026-51199

Name of the Vulnerable Software and Affected Versions Montodel House-Rental-Management versions prior to 90010017b81265eb1ef3810268909f7719a33863 Description A SQL injection issue exists in the '/login.php' endpoint. Remote attackers can exploit this by manipulating the Username parameter. SQL...

7.5CVSS7.1AI score0.00259EPSS
Exploits0References11
NVD
NVD
added 2026/06/17 1:19 p.m.7 views

CVE-2025-69151

Unauthenticated Cross Site Scripting XSS in Grand Car Rental = 3.7 versions...

7.1CVSS0.0018EPSS
Exploits0References1
CVE
CVE
added 2026/06/16 8:57 p.m.17 views

CVE-2025-69151

CVE-2025-69151 describes an unauthenticated Cross Site Scripting (XSS) vulnerability in the WordPress Grand Car Rental theme, affecting versions up to 3.7. The available description confirms the vulnerability class (XSS) and that exploitation does not require authentication, but the provided mate...

7.1CVSS5AI score0.0018EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/06/16 8:57 p.m.20 views

CVE-2025-69151 WordPress Grand Car Rental theme <= 3.7 - Cross Site Scripting (XSS) vulnerability

Unauthenticated Cross Site Scripting XSS in Grand Car Rental = 3.7 versions...

7.1CVSS0.0018EPSS
Exploits0References1
Rows per page
Query Builder