Petrol Pump Management Security Vulnerabilities and Issues — Petrol Pump Management CVE List

Lucene search

MayurikPetrol Pump Management

16 matches found

CVE•added 2024/03/01 12:15 p.m.•76 views

CVE-2024-2059

A vulnerability was found in SourceCodester Petrol Pump Management Software 1.0. It has been rated as critical. Affected by this issue is some unknown functionality of the file /admin/app/service_crud.php. The manipulation of the argument photo leads to unrestricted upload. The attack may be launch...

7.2CVSS4.9AI score0.00054EPSS

CVE•added 2024/03/01 1:15 p.m.•72 views

CVE-2024-2062

A vulnerability, which was classified as critical, has been found in SourceCodester Petrol Pump Management Software 1.0. This issue affects some unknown processing of the file /admin/edit_categories.php. The manipulation of the argument id leads to sql injection. The attack may be initiated remotel...

7.2CVSS5.3AI score0.00039EPSS

CVE•added 2024/03/01 1:15 p.m.•70 views

CVE-2024-2061

A vulnerability classified as critical was found in SourceCodester Petrol Pump Management Software 1.0. This vulnerability affects unknown code of the file /admin/edit_supplier.php. The manipulation of the argument id leads to sql injection. The attack can be initiated remotely. The exploit has bee...

7.2CVSS5.5AI score0.00039EPSS

CVE•added 2024/03/01 10:15 p.m.•70 views

CVE-2024-27744

Cross Site Scripting vulnerability in Petrol Pump Mangement Software v.1.0 allows an attacker to execute arbitrary code via a crafted payload to the image parameter in the profile.php component.

6.1CVSS7AI score0.02631EPSS

CVE•added 2024/03/01 11:15 a.m.•68 views

CVE-2024-2058

A vulnerability was found in SourceCodester Petrol Pump Management Software 1.0. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /admin/app/product.php. The manipulation of the argument photo leads to unrestricted upload. The attack can be la...

7.2CVSS4.9AI score0.00054EPSS

CVE•added 2024/03/01 1:15 p.m.•64 views

CVE-2024-2063

A vulnerability, which was classified as problematic, was found in SourceCodester Petrol Pump Management Software 1.0. Affected is an unknown function of the file /admin/app/profile_crud.php. The manipulation of the argument username leads to cross site scripting. It is possible to launch the attac...

4.8CVSS3.8AI score0.00057EPSS

CVE•added 2024/03/01 10:15 p.m.•62 views

CVE-2024-27743

Cross Site Scripting vulnerability in Petrol Pump Mangement Software v.1.0 allows an attacker to execute arbitrary code via a crafted payload to the Address parameter in the add_invoices.php component.

6.1CVSS7AI score0.01954EPSS

CVE•added 2024/03/01 1:15 p.m.•61 views

CVE-2024-2060

A vulnerability classified as critical has been found in SourceCodester Petrol Pump Management Software 1.0. This affects an unknown part of the file /admin/app/login_crud.php. The manipulation of the argument email leads to sql injection. It is possible to initiate the attack remotely. The exploit...

7.2CVSS5.4AI score0.00039EPSS

CVE•added 2024/03/01 10:15 p.m.•61 views

CVE-2024-27747

File Upload vulnerability in Petrol Pump Mangement Software v.1.0 allows an attacker to execute arbitrary code via a crafted payload to the email Image parameter in the profile.php component.

9.8CVSS7.5AI score0.19689EPSS

CVE•added 2024/10/27 12:15 a.m.•57 views

CVE-2024-10407

A vulnerability, which was classified as critical, was found in SourceCodester Petrol Pump Management Software 1.0. This affects an unknown part of the file /admin/edit_customer.php. The manipulation of the argument id leads to sql injection. It is possible to initiate the attack remotely. The expl...

7.2CVSS6.8AI score0.00101EPSS

CVE•added 2024/03/01 10:15 p.m.•54 views

CVE-2024-27746

SQL Injection vulnerability in Petrol Pump Mangement Software v.1.0 allows an attacker to execute arbitrary code via a crafted payload to the email address parameter in the index.php component.

9.8CVSS8.4AI score0.00742EPSS

CVE•added 2024/04/15 7:15 p.m.•43 views

CVE-2024-28558

SQL Injection vulnerability in sourcecodester Petrol pump management software v1.0, allows remote attackers to execute arbitrary code, escalate privileges, and obtain sensitive information via crafted payload to admin/app/web_crud.php.

8.8CVSS8.4AI score0.01342EPSS

CVE•added 2024/10/25 1:15 a.m.•39 views

CVE-2024-10354

A vulnerability classified as critical was found in SourceCodester Petrol Pump Management Software 1.0. Affected by this vulnerability is an unknown functionality of the file /admin/print.php. The manipulation of the argument id leads to sql injection. The attack can be launched remotely. The explo...

5.8CVSS5.3AI score0.00021EPSS

CVE•added 2024/10/26 10:15 p.m.•39 views

CVE-2024-10406

A vulnerability, which was classified as critical, has been found in SourceCodester Petrol Pump Management Software 1.0. Affected by this issue is some unknown functionality of the file /admin/edit_fuel.php. The manipulation of the argument id leads to sql injection. The attack may be launched remo...

7.2CVSS6.8AI score0.00101EPSS

CVE•added 2024/10/25 1:15 p.m.•37 views

CVE-2024-10380

A vulnerability, which was classified as critical, has been found in SourceCodester Petrol Pump Management Software 1.0. Affected by this issue is some unknown functionality of the file /admin/ajax_product.php. The manipulation of the argument drop_services leads to sql injection. The attack may be...

7.5CVSS6.9AI score0.00063EPSS

CVE•added 2024/10/25 1:15 a.m.•36 views

CVE-2024-10355

A vulnerability, which was classified as critical, has been found in SourceCodester Petrol Pump Management Software 1.0. Affected by this issue is some unknown functionality of the file /admin/invoice.php. The manipulation of the argument id leads to sql injection. The attack may be launched remote...

5.8CVSS5.2AI score0.00123EPSS