IDCVSSSummaryLast (major) updatePublished
CVE-2017-17637 7.5
Car Rental Script 2.0.4 has SQL Injection via the countrycode1.php val parameter.
29-12-2017 - 19:10 13-12-2017 - 09:29
CVE-2017-17905 6.8
PHP Scripts Mall Car Rental Script has CSRF via admin/sitesettings.php.
10-01-2018 - 19:43 27-12-2017 - 17:08
CVE-2017-17906 7.5
PHP Scripts Mall Car Rental Script has SQL Injection via the admin/carlistedit.php carid parameter.
09-01-2018 - 16:56 27-12-2017 - 17:08
CVE-2017-17907 4.3
PHP Scripts Mall Car Rental Script has XSS via the admin/areaedit.php carid parameter or the admin/sitesettings.php websitename parameter.
09-01-2018 - 16:57 27-12-2017 - 17:08
CVE-2018-15182 3.5
PHP Scripts Mall Car Rental Script 2.0.8 has XSS via the FirstName and LastName fields.
05-10-2018 - 16:41 09-08-2018 - 19:29
CVE-2018-20647 4.0
PHP Scripts Mall Car Rental Script 2.0.8 has directory traversal via a direct request for a listing of an image directory such as an images/ directory.
25-03-2019 - 13:36 21-03-2019 - 16:00
CVE-2018-20648 6.8
PHP Scripts Mall Car Rental Script 2.0.8 has Cross-Site Request Forgery (CSRF) via accountedit.php.
22-03-2019 - 15:52 21-03-2019 - 16:00
CVE-2018-6904 3.5
PHP Scripts Mall Car Rental Script 2.0.8 has XSS via the User Name field in an Edit Profile action.
16-05-2018 - 15:30 12-04-2018 - 22:29
Back to Top Mark selected
Back to Top