Car Rental Script Project: >> Car Rental Script Security Vulnerabilities
PHP Scripts Mall Car Rental Script 2.0.8 has directory traversal via a direct request for a listing of an image directory such as an images/ directory.
CVSS Score
6.5
EPSS Score
0.004
Published
2019-03-21
PHP Scripts Mall Car Rental Script 2.0.8 has Cross-Site Request Forgery (CSRF) via accountedit.php.
CVSS Score
8.8
EPSS Score
0.001
Published
2019-03-21
PHP Scripts Mall Car Rental Script 2.0.8 has XSS via the FirstName and LastName fields.
CVSS Score
5.4
EPSS Score
0.002
Published
2018-08-09
PHP Scripts Mall Car Rental Script 2.0.8 has XSS via the User Name field in an Edit Profile action.
CVSS Score
5.4
EPSS Score
0.002
Published
2018-04-12
PHP Scripts Mall Car Rental Script has CSRF via admin/sitesettings.php.
CVSS Score
8.8
EPSS Score
0.001
Published
2017-12-27
PHP Scripts Mall Car Rental Script has SQL Injection via the admin/carlistedit.php carid parameter.
CVSS Score
9.8
EPSS Score
0.003
Published
2017-12-27
PHP Scripts Mall Car Rental Script has XSS via the admin/areaedit.php carid parameter or the admin/sitesettings.php websitename parameter.
CVSS Score
6.1
EPSS Score
0.002
Published
2017-12-27
Car Rental Script 2.0.4 has SQL Injection via the countrycode1.php val parameter.
CVSS Score
9.8
EPSS Score
0.026
Published
2017-12-13