10 matches found
CVE-2023-0916
A vulnerability classified as critical was found in SourceCodester Auto Dealer Management System 1.0. Affected by this vulnerability is an unknown functionality of the file /adms/classes/Users.php. The manipulation leads to improper access controls. The attack can be launched remotely. The exploi...
CVE-2023-0915
A vulnerability classified as critical has been found in SourceCodester Auto Dealer Management System 1.0. Affected is an unknown function of the file /adms/admin/?page=user/manageuser. The manipulation of the argument id leads to sql injection. It is possible to launch the attack remotely. The...
CVE-2023-0915
A vulnerability classified as critical has been found in SourceCodester Auto Dealer Management System 1.0. Affected is an unknown function of the file /adms/admin/?page=user/manageuser. The manipulation of the argument id leads to sql injection. It is possible to launch the attack remotely. The...
CVE-2023-0916 SourceCodester Auto Dealer Management System Users.php access control
A vulnerability classified as critical was found in SourceCodester Auto Dealer Management System 1.0. Affected by this vulnerability is an unknown functionality of the file /adms/classes/Users.php. The manipulation leads to improper access controls. The attack can be launched remotely. The exploi...
CVE-2023-0915 SourceCodester Auto Dealer Management System sql injection
A vulnerability classified as critical has been found in SourceCodester Auto Dealer Management System 1.0. Affected is an unknown function of the file /adms/admin/?page=user/manageuser. The manipulation of the argument id leads to sql injection. It is possible to launch the attack remotely. The...
CVE-2023-0915 SourceCodester Auto Dealer Management System sql injection
A vulnerability classified as critical has been found in SourceCodester Auto Dealer Management System 1.0. Affected is an unknown function of the file /adms/admin/?page=user/manageuser. The manipulation of the argument id leads to sql injection. It is possible to launch the attack remotely. The...
CVE-2023-0912
A vulnerability classified as critical has been found in SourceCodester Auto Dealer Management System 1.0. This affects an unknown part of the file /adms/admin/?page=vehicles/viewtransaction. The manipulation of the argument id leads to sql injection. It is possible to initiate the attack remotel...
CVE-2023-0913
A vulnerability classified as critical was found in SourceCodester Auto Dealer Management System 1.0. This vulnerability affects unknown code of the file /adms/admin/?page=vehicles/sellvehicle. The manipulation of the argument id leads to sql injection. The attack can be initiated remotely. The...
CVE-2023-0912
CVE-2023-0912 affects SourceCodester Auto Dealer Management System 1.0. A SQL injection vulnerability exists in the /adms/admin/?page=vehicles/view_transaction endpoint caused by manipulating the id parameter, with remote exploitation possible. Public exploits/disclosures exist (e.g., Exploit-DB,...
PT-2023-16614 · Sourcecodester · Sourcecodester Auto Dealer Management System
Name of the Vulnerable Software and Affected Versions: SourceCodester Auto Dealer Management System version 1.0 Description: A critical issue has been discovered, affecting the "/adms/admin/?page=vehicles/view transaction" endpoint. The manipulation of the id argument leads to SQL injection,...