Search Results | AttackerKB

Show filters

Topics 29 Users 9,709

Clear All

Disclosure Date

Disclosure Year Disclosure Month

Collection Command and Control Credential Access Defense Evasion Discovery Execution Exfiltration Impact Initial Access Lateral Movement Persistence Privilege Escalation

29 Total Results

Displaying 11-20 of 29

Attacker Value

Unknown

CVE-2022-32026

Disclosure Date: June 02, 2022 (last updated October 07, 2023)

Car Rental Management System v1.0 is vulnerable to SQL Injection via /car-rental-management-system/admin/manage_booking.php?id=.

Attack Vector: Network Privileges: High User Interaction: None

0

Attacker Value

Unknown

CVE-2022-32025

Disclosure Date: June 02, 2022 (last updated October 07, 2023)

Car Rental Management System v1.0 is vulnerable to SQL Injection via /car-rental-management-system/admin/view_car.php?id=.

Attack Vector: Network Privileges: High User Interaction: None

0

Attacker Value

Unknown

CVE-2022-32024

Disclosure Date: June 02, 2022 (last updated October 07, 2023)

Car Rental Management System v1.0 is vulnerable to SQL Injection via car-rental-management-system/booking.php?car_id=.

Attack Vector: Network Privileges: High User Interaction: None

0

Attacker Value

Unknown

CVE-2022-32022

Disclosure Date: June 02, 2022 (last updated October 07, 2023)

Car Rental Management System v1.0 is vulnerable to SQL Injection via /ip/car-rental-management-system/admin/ajax.php?action=login.

Attack Vector: Network Privileges: High User Interaction: None

0

Attacker Value

Unknown

CVE-2022-32021

Disclosure Date: June 02, 2022 (last updated October 07, 2023)

Car Rental Management System v1.0 is vulnerable to SQL Injection via /car-rental-management-system/admin/manage_movement.php?id=.

Attack Vector: Network Privileges: High User Interaction: None

0

Attacker Value

Unknown

CVE-2022-32020

Disclosure Date: June 02, 2022 (last updated October 07, 2023)

Car Rental Management System v1.0 is vulnerable to Arbitrary code execution via ip/car-rental-management-system/admin/ajax.php?action=save_settings.

Attack Vector: Network Privileges: None User Interaction: None

0

Attacker Value

Unknown

CVE-2022-29318

Disclosure Date: May 11, 2022 (last updated October 07, 2023)

An arbitrary file upload vulnerability in the New Entry module of Car Rental Management System v1.0 allows attackers to execute arbitrary code via a crafted PHP file.

Attack Vector: Network Privileges: High User Interaction: None

0

Attacker Value

Unknown

CVE-2022-28000

Disclosure Date: April 08, 2022 (last updated October 07, 2023)

Car Rental System v1.0 was discovered to contain a SQL injection vulnerability at /Car_Rental/booking.php via the id parameter.

Attack Vector: Network Privileges: Low User Interaction: None

0

Attacker Value

Unknown

CVE-2022-28062

Disclosure Date: April 04, 2022 (last updated October 07, 2023)

Car Rental System v1.0 contains an arbitrary file upload vulnerability via the Add Car component which allows attackers to upload a webshell and execute arbitrary code.

Attack Vector: Network Privileges: Low User Interaction: None

0

Attacker Value

Unknown

CVE-2021-46005

Disclosure Date: January 18, 2022 (last updated October 07, 2023)

Sourcecodester Car Rental Management System 1.0 is vulnerable to Cross Site Scripting (XSS) via vehicalorcview parameter.

Attack Vector: Network Privileges: Low User Interaction: Required

0