Lucene search
K

10 matches found

NVD
NVD
added 2023/02/19 9:15 a.m.22 views

CVE-2023-0916

A vulnerability classified as critical was found in SourceCodester Auto Dealer Management System 1.0. Affected by this vulnerability is an unknown functionality of the file /adms/classes/Users.php. The manipulation leads to improper access controls. The attack can be launched remotely. The exploi...

8.8CVSS7.2AI score0.03074EPSS
Exploits4References3
OSV
OSV
added 2023/02/19 9:15 a.m.4 views

CVE-2023-0915

A vulnerability classified as critical has been found in SourceCodester Auto Dealer Management System 1.0. Affected is an unknown function of the file /adms/admin/?page=user/manageuser. The manipulation of the argument id leads to sql injection. It is possible to launch the attack remotely. The...

8.8CVSS6.5AI score0.01728EPSS
Exploits5References3
NVD
NVD
added 2023/02/19 9:15 a.m.29 views

CVE-2023-0915

A vulnerability classified as critical has been found in SourceCodester Auto Dealer Management System 1.0. Affected is an unknown function of the file /adms/admin/?page=user/manageuser. The manipulation of the argument id leads to sql injection. It is possible to launch the attack remotely. The...

8.8CVSS7.3AI score0.01728EPSS
Exploits5References3
Cvelist
Cvelist
added 2023/02/19 8:10 a.m.24 views

CVE-2023-0916 SourceCodester Auto Dealer Management System Users.php access control

A vulnerability classified as critical was found in SourceCodester Auto Dealer Management System 1.0. Affected by this vulnerability is an unknown functionality of the file /adms/classes/Users.php. The manipulation leads to improper access controls. The attack can be launched remotely. The exploi...

6.5CVSS9.1AI score0.03074EPSS
Exploits4References3
Cvelist
Cvelist
added 2023/02/19 8:8 a.m.25 views

CVE-2023-0915 SourceCodester Auto Dealer Management System sql injection

A vulnerability classified as critical has been found in SourceCodester Auto Dealer Management System 1.0. Affected is an unknown function of the file /adms/admin/?page=user/manageuser. The manipulation of the argument id leads to sql injection. It is possible to launch the attack remotely. The...

6.5CVSS9.3AI score0.01728EPSS
Exploits5References3
Vulnrichment
Vulnrichment
added 2023/02/19 8:8 a.m.8 views

CVE-2023-0915 SourceCodester Auto Dealer Management System sql injection

A vulnerability classified as critical has been found in SourceCodester Auto Dealer Management System 1.0. Affected is an unknown function of the file /adms/admin/?page=user/manageuser. The manipulation of the argument id leads to sql injection. It is possible to launch the attack remotely. The...

6.5CVSS7.3AI score0.01728EPSS
Exploits5References3
NVD
NVD
added 2023/02/18 8:15 p.m.11 views

CVE-2023-0912

A vulnerability classified as critical has been found in SourceCodester Auto Dealer Management System 1.0. This affects an unknown part of the file /adms/admin/?page=vehicles/viewtransaction. The manipulation of the argument id leads to sql injection. It is possible to initiate the attack remotel...

8.8CVSS6.2AI score0.01635EPSS
Exploits5References3
NVD
NVD
added 2023/02/18 8:15 p.m.12 views

CVE-2023-0913

A vulnerability classified as critical was found in SourceCodester Auto Dealer Management System 1.0. This vulnerability affects unknown code of the file /adms/admin/?page=vehicles/sellvehicle. The manipulation of the argument id leads to sql injection. The attack can be initiated remotely. The...

8.8CVSS6.2AI score0.01635EPSS
Exploits5References3
CVE
CVE
added 2023/02/18 7:33 p.m.49 views

CVE-2023-0912

CVE-2023-0912 affects SourceCodester Auto Dealer Management System 1.0. A SQL injection vulnerability exists in the /adms/admin/?page=vehicles/view_transaction endpoint caused by manipulating the id parameter, with remote exploitation possible. Public exploits/disclosures exist (e.g., Exploit-DB,...

8.8CVSS6.8AI score0.01635EPSS
Exploits5References3Affected Software1
Positive Technologies
Positive Technologies
added 2023/02/18 12:0 a.m.4 views

PT-2023-16614 · Sourcecodester · Sourcecodester Auto Dealer Management System

Name of the Vulnerable Software and Affected Versions: SourceCodester Auto Dealer Management System version 1.0 Description: A critical issue has been discovered, affecting the "/adms/admin/?page=vehicles/view transaction" endpoint. The manipulation of the id argument leads to SQL injection,...

8.8CVSS5.5AI score0.01635EPSS
Exploits5References6
Rows per page
Query Builder