Packers And Movers Management System Security Vulnerabilities and Issues — Packers And Movers Management System CVE List

Lucene search

Oretnom23Packers And Movers Management System

6 matches found

CVE•added 2025/02/03 1:15 p.m.•49 views

CVE-2024-57522

SourceCodester Packers and Movers Management System v1.0 is vulnerable to Cross Site Scripting (XSS) in Users.php. An attacker can inject a malicious script into the username or name field during user creation.

6.4CVSS6.1AI score0.00813EPSS

CVE•added 2023/10/26 6:15 p.m.•46 views

CVE-2023-46435

Sourcecodester Packers and Movers Management System v1.0 is vulnerable to SQL Injection via mpms/?p=services/view_service&id.

9.8CVSS9.8AI score0.00066EPSS

CVE•added 2023/09/28 4:15 p.m.•42 views

CVE-2023-30415

Sourcecodester Packers and Movers Management System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /inquiries/view_inquiry.php.

9.8CVSS9.7AI score0.00138EPSS

CVE•added 2025/02/06 7:15 p.m.•39 views

CVE-2024-57523

Cross Site Request Forgery (CSRF) in Users.php in SourceCodester Packers and Movers Management System 1.0 allows attackers to create unauthorized admin accounts via crafted requests sent to an authenticated admin user.

4.5CVSS6.8AI score0.00222EPSS

CVE•added 2024/10/24 7:15 p.m.•37 views

CVE-2024-48427

A SQL injection vulnerability in Sourcecodester Packers and Movers Management System v1.0 allows remote authenticated users to execute arbitrary SQL commands via the id parameter in /mpms/admin/?page=services/manage_service&id

8.8CVSS8.6AI score0.11657EPSS

CVE•added 2023/11/30 11:15 p.m.•20 views

CVE-2023-46956

SQL injection vulnerability in Packers and Movers Management System v.1.0 allows a remote attacker to execute arbitrary code via crafted payload to the /mpms/admin/?page=user/manage_user&id file.

7.2CVSS7.4AI score0.02079EPSS