Количество 3
Количество 3
CVE-2020-11545
Project Worlds Official Car Rental System 1 is vulnerable to multiple SQL injection issues, as demonstrated by the email and parameters (account.php), uname and pass parameters (login.php), and id parameter (book_car.php) This allows an attacker to dump the MySQL database and to bypass the login authentication prompt.
GHSA-74gf-3gg2-4jc6
Project Worlds Official Car Rental System 1 is vulnerable to multiple SQL injection issues, as demonstrated by the email and parameters (account.php), uname and pass parameters (login.php), and id parameter (book_car.php) This allows an attacker to dump the MySQL database and to bypass the login authentication prompt.
BDU:2022-06600
Уязвимость реализации сценариев account.php, login.php и book_car.php CMS-системы Official Car Rental System, позволяющая нарушителю обойти ограничения безопасности
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2020-11545 Project Worlds Official Car Rental System 1 is vulnerable to multiple SQL injection issues, as demonstrated by the email and parameters (account.php), uname and pass parameters (login.php), and id parameter (book_car.php) This allows an attacker to dump the MySQL database and to bypass the login authentication prompt. | CVSS3: 9.8 | 0% Низкий | почти 6 лет назад |
| GHSA-74gf-3gg2-4jc6 Project Worlds Official Car Rental System 1 is vulnerable to multiple SQL injection issues, as demonstrated by the email and parameters (account.php), uname and pass parameters (login.php), and id parameter (book_car.php) This allows an attacker to dump the MySQL database and to bypass the login authentication prompt. | 0% Низкий | больше 3 лет назад | |
 | BDU:2022-06600 Уязвимость реализации сценариев account.php, login.php и book_car.php CMS-системы Official Car Rental System, позволяющая нарушителю обойти ограничения безопасности | CVSS3: 9.8 | 0% Низкий | почти 6 лет назад |
Уязвимостей на страницу