Shodan
Vulnerabilities
Vulnerable Software
Vehicle Service Management System Project:  Security Vulnerabilities
CVE-2021-46068
A Stored Cross Site Scripting (XSS) vulnerability exists in Vehicle Service Management System 1.0 via the My Account Section in login panel.
CVSS Score
4.8
EPSS Score
0.043
Published
2022-01-06
CVE-2021-46069
A Stored Cross Site Scripting (XSS) vulnerability exists in Vehicle Service Management System 1.0 via the Mechanic List Section in login panel.
CVSS Score
4.8
EPSS Score
0.043
Published
2022-01-06
CVE-2021-46070
A Stored Cross Site Scripting (XSS) vulnerability exists in Vehicle Service Management System 1.0 via the Service Requests Section in login panel.
CVSS Score
4.8
EPSS Score
0.008
Published
2022-01-06
CVE-2021-46071
A Stored Cross Site Scripting (XSS) vulnerability exists in Vehicle Service Management System 1.0 via the Category List Section in login panel.
CVSS Score
4.8
EPSS Score
0.043
Published
2022-01-06
CVE-2021-46072
A Stored Cross Site Scripting (XSS) vulnerability exists in Vehicle Service Management System 1.0 via the Service List Section in login panel.
CVSS Score
4.8
EPSS Score
0.043
Published
2022-01-06
CVE-2021-46073
A Stored Cross Site Scripting (XSS) vulnerability exists in Sourcecodester Vehicle Service Management System 1.0 via the User List Section in login panel.
CVSS Score
4.8
EPSS Score
0.043
Published
2022-01-06
CVE-2021-46074
A Stored Cross Site Scripting (XSS) vulnerability exists in Sourcecodester Vehicle Service Management System 1.0 via the Settings Section in login panel.
CVSS Score
4.8
EPSS Score
0.006
Published
2022-01-06
CVE-2021-46075
A Privilege Escalation vulnerability exists in Sourcecodester Vehicle Service Management System 1.0. Staff account users can access the admin resources and perform CRUD Operations.
CVSS Score
7.2
EPSS Score
0.016
Published
2022-01-06
CVE-2021-46076
Sourcecodester Vehicle Service Management System 1.0 is vulnerable to File upload. An attacker can upload a malicious php file in multiple endpoints it leading to Code Execution.
CVSS Score
8.8
EPSS Score
0.076
Published
2022-01-06
CVE-2021-46080
A Cross Site Request Forgery (CSRF) vulnerability exists in Vehicle Service Management System 1.0. An successful CSRF attacks leads to Stored Cross Site Scripting Vulnerability.
CVSS Score
4.8
EPSS Score
0.003
Published
2022-01-06


Products
Pricing
Contact Us

Shodan ® - All rights reserved