Shodan
Vulnerabilities
Vulnerable Software
Oretnom23:  >> Online Car Wash Booking System  Security Vulnerabilities
CVE-2024-5385
A vulnerability, which was classified as problematic, has been found in oretnom23 Online Car Wash Booking System 1.0. This issue affects some unknown processing of the file /admin/?page=user/list. The manipulation of the argument First Name/Last Name with the input <script>confirm (document.cookie)</script> leads to cross site scripting. The attack may be initiated remotely. The associated identifier of this vulnerability is VDB-266303.
CVSS Score
2.4
EPSS Score
0.001
Published
2024-05-27
CVE-2022-31342
Online Car Wash Booking System v1.0 is vulnerable to Delete any file via /ocwbs/classes/Master.php?f=delete_img.
CVSS Score
6.5
EPSS Score
0.003
Published
2022-06-02
CVE-2022-31343
Online Car Wash Booking System v1.0 is vulnerable to SQL Injection via /ocwbs/admin/?page=bookings/view_details&id=.
CVSS Score
9.8
EPSS Score
0.003
Published
2022-06-02
CVE-2022-31344
Online Car Wash Booking System v1.0 is vulnerable to SQL Injection via /ocwbs/classes/Master.php?f=delete_booking.
CVSS Score
9.8
EPSS Score
0.003
Published
2022-06-02
CVE-2022-31345
Online Car Wash Booking System v1.0 is vulnerable to SQL Injection via /ocwbs/admin/?page=user/manage_user&id=.
CVSS Score
9.8
EPSS Score
0.003
Published
2022-06-02
CVE-2022-31346
Online Car Wash Booking System v1.0 is vulnerable to SQL Injection via /ocwbs/classes/Master.php?f=delete_service.
CVSS Score
9.8
EPSS Score
0.003
Published
2022-06-02
CVE-2022-31347
Online Car Wash Booking System v1.0 is vulnerable to SQL Injection via /ocwbs/classes/Master.php?f=delete_vehicle.
CVSS Score
9.8
EPSS Score
0.003
Published
2022-06-02
CVE-2022-31348
Online Car Wash Booking System v1.0 is vulnerable to SQL Injection via /ocwbs/admin/bookings/update_status.php?id=.
CVSS Score
9.8
EPSS Score
0.003
Published
2022-06-02
CVE-2022-31350
Online Car Wash Booking System v1.0 is vulnerable to SQL Injection via /ocwbs/admin/vehicles/manage_vehicle.php?id=.
CVSS Score
9.8
EPSS Score
0.003
Published
2022-06-02
CVE-2022-31351
Online Car Wash Booking System v1.0 by oretnom23 has SQL injection via /ocwbs/admin/services/manage_price.php?id=.
CVSS Score
9.8
EPSS Score
0.003
Published
2022-06-02


Products
Pricing
Contact Us

Shodan ® - All rights reserved