Lucene search
+L
Oretnom23Car Driving School Management System

12 matches found

cve
cve
added 2024/08/11 7:31 a.m.76 views

CVE-2024-7666

The CVE-2024-7666 entry describes a SQL injection in SourceCodester Car Driving School Management System 1.0 affecting the file view_package.php, triggered by manipulating the id parameter. This vulnerability can be exploited remotely and has been publicly disclosed. Affected component is unclear...

6.5CVSS6.7AI score0.00487EPSS
cve
cve
added 2024/08/11 10:31 a.m.68 views

CVE-2024-7677

CVE-2024-7677 affects SourceCodester Car Driving School Management System 1.0. The vulnerability is in the function update_settings_info of /classes/SystemSettings.php?f=update_settings, where manipulating the contact/address argument triggers cross-site scripting. It can be exploited remotely, a...

6.1CVSS3.7AI score0.00426EPSS
Web
cve
cve
added 2024/08/11 7:0 a.m.67 views

CVE-2024-7665

CVE-2024-7665 affects SourceCodester Car Driving School Management System 1.0, with a SQL injection in the manage_package.php file caused by manipulation of the id parameter. The vulnerability can be exploited remotely and the exploit has been disclosed publicly. Affected component/filename: mana...

6.5CVSS6.9AI score0.00521EPSS
cve
cve
added 2024/08/11 12:31 p.m.62 views

CVE-2024-7678

CVE-2024-7678 pertains to SourceCodester Car Driving School Management System 1.0. A cross-site scripting vulnerability resides in the public function at /classes/Master.php?f=save_package, triggered by manipulating the name/description/training_duration parameters. The issue is exploitable remot...

6.1CVSS3.8AI score0.00426EPSS
Web
cve
cve
added 2024/08/11 6:31 a.m.60 views

CVE-2024-7664

CVE-2024-7664 affects SourceCodester Car Driving School Management System 1.0. The vulnerability is an SQL injection in an unknown function within view_details.php triggered by manipulating the id parameter, allowing remote exploitation. Multiple sources confirm the issue and public disclosure of...

6.5CVSS6.9AI score0.00521EPSS
cve
cve
added 2024/08/11 4:0 a.m.59 views

CVE-2024-7662

The CVE-2024-7662 entry concerns SourceCodester Car Driving School Management System 1.0. The vulnerability affects the admin/packages/manag_package.php function save_package and allows cross-site request forgery (CSRF) with remote initiation. Public exploit information is noted in the initial da...

6.9CVSS4.7AI score0.00406EPSS
cve
cve
added 2024/08/11 9:31 a.m.59 views

CVE-2024-7676

CVE-2024-7676 affects Sourcecodester Car Driving School Management System 1.0. The vulnerability is a SQL injection in the function save_package (file /classes/Master.php?f=save_package) caused by manipulating the argument id. It can be triggered remotely and has been publicly disclosed. Multiple...

6.5CVSS6.8AI score0.00447EPSS
Web
cve
cve
added 2024/08/11 3:31 a.m.58 views

CVE-2024-7661

The CVE-2024-7661 entry affects SourceCodester Car Driving School Management System 1.0, specifically the save_users function in admin/user/index.php. The vulnerability is cross‑site request forgery that can be triggered remotely, and public disclosures exist. Connected sources describe the issue...

8.8CVSS4.6AI score0.00425EPSS
cve
cve
added 2024/08/11 8:31 a.m.58 views

CVE-2024-7668

CVE-2024-7668 affects SourceCodester Car Driving School Management System 1.0, specifically the delete_package function in Master.php. The vulnerability is an SQL injection caused by unsafely handling the id parameter, allowing remote exploitation. Public disclosures exist, and multiple sources c...

6.5CVSS6.7AI score0.00447EPSS
cve
cve
added 2024/08/11 8:0 a.m.56 views

CVE-2024-7667

CVE-2024-7667 affects SourceCodester Car Driving School Management System 1.0, specifically the delete_users function in User.php. The vulnerability arises from improper handling of the id argument, enabling SQL injection. Exploitation can be performed remotely, and public disclosures exist. Conn...

6.5CVSS6.8AI score0.00542EPSS
cve
cve
added 2024/08/11 9:0 a.m.56 views

CVE-2024-7669

CVE-2024-7669 affects SourceCodester Car Driving School Management System 1.0, specifically the delete_enrollment function in Master.php. The vulnerability is an SQL injection caused by unsafely handling the id parameter, enabling remote exploitation. Multiple sources confirm the attacker can tri...

6.5CVSS6.8AI score0.00447EPSS
cve
cve
added 2024/08/11 5:0 a.m.55 views

CVE-2024-7663

CVE-2024-7663 affects SourceCodester Car Driving School Management System 1.0, specifically the manage_user.php file. The issue is an SQL injection caused by unsafely manipulating the id parameter, exploitable via network remotely. The vulnerability has public disclosure, and multiple sources cor...

6.5CVSS6.8AI score0.00542EPSS