CVE-2024-51223

A stored cross-site scripting XSS vulnerability in the component /admin/profile.php of Phpgurukul Vehicle Record Management System v1.0 allows attackers to execute arbitrary web scripts or HTML via injecting a crafted payload into the Mobile Number parameter...

CVE-2024-51226

A stored cross-site scripting XSS vulnerability in the component /admin/search-vehicle.php of Phpgurukul Vehicle Record Management System v1.0 allows attackers to execute arbitrary web scripts or HTML via injecting a crafted payload into the Search parameter...

CVE-2024-51224

Multiple cross-site scripting XSS vulnerabilities in the component /admin/edit-vehicle.php of Phpgurukul Vehicle Record Management System v1.0 allows attackers to execute arbitrary web scripts or HTML via injecting a crafted payload into the vehiclename, modelnumber, regnumber, vehiclesubtype,...

CVE-2024-51223

A stored cross-site scripting XSS vulnerability in the component /admin/profile.php of Phpgurukul Vehicle Record Management System v1.0 allows attackers to execute arbitrary web scripts or HTML via injecting a crafted payload into the Mobile Number parameter...

CVE-2024-51225

CVE-2024-51225 describes a stored XSS in the Phpgurukul Vehicle Record Management System v1.0, exploitable via the brandname parameter in /admin/add-brand.php. The root cause is improper handling of input in that field, enabling insertion of arbitrary web scripts/HTML which can be rendered by vic...

The vulnerability of software for vehicle management and tracking systems, related to the possibility of escaping the directory structure, allows a violator to increase their privileges and execute arbitrary code.

The vulnerability of the software for controlling and monitoring vehicles in the Howen Vehicle Service System is related to the possibility of it escaping the directory structure. Exploiting this vulnerability could allow a remote attacker to perform network activities without the user’s knowledg...

PT-2024-37141 · Unknown · Itsourcecode Vehicle Management System

Name of the Vulnerable Software and Affected Versions: SourceCodester Vehicle Management System version 1.0 Description: A critical issue was found in the SourceCodester Vehicle Management System, affecting some unknown functionality of the file updatebill.php. The manipulation of the id argument...

CVE-2023-43268

Deyue Remote Vehicle Management System v1.1 was discovered to contain a deserialization vulnerability...

SQL Injection Vulnerability in Kaixin Official Vehicle System

Qixing official car system can be used as enterprises, government departments official car applications, the system supports the second level of approval, support for vehicle maintenance, refueling records, mileage and fuel consumption reports, the system supports WeChat / enterprise WeChat...

SQL injection vulnerability in SelectedEnableAdmin parameter of AreaInfoHandle.php file of Hikvision's in-vehicle remote monitoring system

Hikvision vehicle remote monitoring system is a set of vehicle video networking monitoring platform software. Hikvision Vehicle Remote Monitoring System AreaInfoHandle.php page SelectedEnableAdmin parameter exists SQL injection vulnerability, an attacker can exploit the vulnerability to obtain...

SQL injection vulnerability in the SelectedEnableAdmin parameter of the AddArea.php file of Hikvision's in-vehicle remote monitoring system

Hikvision vehicle remote monitoring system is a set of vehicle video networking monitoring platform software. A SQL injection vulnerability exists in the parameter SelectedEnableAdmin in the file AddArea.php of Hikvision Vehicle Remote Monitoring System. It allows attackers to exploit the...

SQL Injection Vulnerability in Driver's Home Vehicle Information System of Shandong Guoan Information Industry Co.

Ltd. is subordinate to CITIC Guoan Information Industry Co., Ltd. and is an independent legal person enterprise formally registered in October 1997 in Shandong Province Administration for Industry and Commerce. A SQL injection vulnerability exists in the Driver's Home Vehicle Information System o...

Logic design loopholes in CCTV cloud computing vehicle satellite positioning system

Cloud Computing Vehicle Satellite Positioning System is a system composed of Global Positioning System GPS and Geographic Information System GIS that can realize the tracking and positioning of vehicles by Hangzhou Zhongguang Technology Development Co. There is a logical design vulnerability in t...