Car Rental Management System SQL Injection Vulnerability (CNVD-2022-61082)

Car Rental Management System is a car rental management system. SQL injection vulnerability exists in Car Rental Management System, which can be exploited by attackers to view, add, modify or delete information in the back-end database...

rental is unmaintained, author has moved on

The author encourages users to explore other solutions, or maintain a fork. Maintained alternatives include: ouroboros fortify escher...

Online Motorcycle (Bike) Rental System 1.0 - Blind Time-Based SQL Injection Exploit

Exploit Title: Online Motorcycle Bike Rental System 1.0 - Blind Time-Based SQL Injection Unauthenticated Exploit Author: Chase ComardelleCASO Vendor Homepage: https://www.sourcecodester.com/php/14989/online-motorcycle-bike-rental-system-phpoop-source-code.html Software Link:...

Storage Unit Rental Management System 1.0 - Remote Code Execution (Unauthenticated) Exploit

Exploit Title: Storage Unit Rental Management System 1.0 - Remote Code Execution RCE Unauthenticated Exploit Author: Fikrat Ghuliev Ghuliev Vendor Homepage: https://www.sourcecodester.com/php/14932/storage-unit-rental-management-system-using-php-free-source-code.html Software Link:...

CVE-2019-7434

This CVE affects PHP Scripts Mall Rental Bike Script 2.0.3, where a directory traversal flaw allows listing of an uploads directory via a direct request. The root cause is improper validation of file paths, enabling access to sensitive upload contents. The connected documents confirm the same iss...

CVE-2019-7432

CVE-2019-7432 concerns PHP Scripts Mall Rental Bike Script 2.0.3, where an HTML injection flaw exists in the PROFILE EDIT section via the STREET field. The vulnerability allows insertion of HTML content into user profiles, enabling potential reflected/stored content manipulation within affected p...

CVE-2012-6586

CVE-2012-6586 describes multiple SQL injection vulnerabilities in MYRE Vacation Rental Software that allow remote attackers to execute arbitrary SQL commands via parameters in vacation/1_mobile/search.php (garage1, bathrooms1) or through input to vacation/widgate/request_more_information.php. The...

ADICO CMS v1.1 - Blind SQL Injection Vulnerability

Document Title: =============== ADICO CMS v1.1 - Blind SQL Injection Vulnerability References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=582 Release Date: ============= 2012-05-28 Vulnerability Laboratory ID VL-ID: ==================================== 582 Comm...

LandShop CMS v0.9.2 - Multiple Web Vulnerabilities

Document Title: =============== LandShop CMS v0.9.2 - Multiple Web Vulnerabilities References Source: ==================== http://vulnerability-lab.com/getcontent.php?id=485 Release Date: ============= 2012-03-31 Vulnerability Laboratory ID VL-ID: ==================================== 485 Product ...

Easy room search system type injection exploit-vulnerability warning-the black bar safety net

This system is a housing transactions, rental of the system. Vulnerability file: searchsell. asp; the searchhire. asp; the searchbuy. asp conn. asp Keyword inurl: efwmanager; the inurl: the searchhire. asp; and inurl: in subhack. asp? This keyword is a bit much By Macromedia Dreamweaver the searc...

Tainos Webdesign (All Scripts) - SQL Injection Cross-Site Scripting HTML Injection

Tainos Webdesign All Scripts - SQL Injection Cross-Site Scripting HTML Injection ------------------------------------------------------------------------------------------- Tainos Webdesign All Scripts SQL/XSS/HTML Injection Vulnerability...