3 matches found
PT-2022-26746 · Unknown · Vehicle Booking System
Name of the Vulnerable Software and Affected Versions: Vehicle Booking System version 1.0 Description: A cross-site scripting XSS issue allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the v name parameter in the admin-add-vehicle.php file...
CVE-2022-30839
Room-rent-portal-site v1.0 is vulnerable to Cross Site Scripting XSS via /rrps/classes/Master.php?f=savecategory, vehiclename...
PT-2022-20351 · Unknown · Toll Tax Management System
Name of the Vulnerable Software and Affected Versions: Toll-tax-management-system version 1.0 Description: The issue concerns a Cross Site Scripting XSS vulnerability. It can be exploited via the API endpoint "/ttms/classes/Master.php" with the parameter f set to "save recipient" and the vehicle...