Show filters
7 Total Results
Displaying 1-7 of 7
Sort by:
Attacker Value
Unknown

CVE-2018-20647

Disclosure Date: March 21, 2019 (last updated November 27, 2024)
PHP Scripts Mall Car Rental Script 2.0.8 has directory traversal via a direct request for a listing of an image directory such as an images/ directory.
0
0
Attacker Value
Unknown

CVE-2018-20648

Disclosure Date: March 21, 2019 (last updated November 27, 2024)
PHP Scripts Mall Car Rental Script 2.0.8 has Cross-Site Request Forgery (CSRF) via accountedit.php.
0
0
Attacker Value
Unknown

CVE-2018-15182

Disclosure Date: August 09, 2018 (last updated November 27, 2024)
PHP Scripts Mall Car Rental Script 2.0.8 has XSS via the FirstName and LastName fields.
0
0
Attacker Value
Unknown

CVE-2018-6904

Disclosure Date: April 12, 2018 (last updated November 26, 2024)
PHP Scripts Mall Car Rental Script 2.0.8 has XSS via the User Name field in an Edit Profile action.
0
0
Attacker Value
Unknown

CVE-2017-17907

Disclosure Date: December 27, 2017 (last updated November 26, 2024)
PHP Scripts Mall Car Rental Script has XSS via the admin/areaedit.php carid parameter or the admin/sitesettings.php websitename parameter.
0
0
Attacker Value
Unknown

CVE-2017-17905

Disclosure Date: December 27, 2017 (last updated November 26, 2024)
PHP Scripts Mall Car Rental Script has CSRF via admin/sitesettings.php.
0
0
Attacker Value
Unknown

CVE-2017-17906

Disclosure Date: December 27, 2017 (last updated November 26, 2024)
PHP Scripts Mall Car Rental Script has SQL Injection via the admin/carlistedit.php carid parameter.
0
0