D4rkP0w4r/CVEs
GitHub
CVE History
| CVE | Published | CVSS v3 | CVSS v2 |
|---|---|---|---|
| 8.8 HIGH | 6.5 MEDIUM | ||
Car Rental System v1.0 was discovered to contain a SQL injection vulnerability at /Car_Rental/booking.php via the id parameter. | |||
| 9.8 CRITICAL | 7.5 HIGH | ||
Movie Seat Reservation v1 was discovered to contain a SQL injection vulnerability at /index.php?page=reserve via the id parameter. | |||
| 7.5 HIGH | 5 MEDIUM | ||
Movie Seat Reservation v1 was discovered to contain an unauthenticated file disclosure vulnerability via /index.php?page=home. | |||
| 9.8 CRITICAL | 7.5 HIGH | ||
Zoo Management System v1.0 was discovered to contain an arbitrary file upload vulnerability via /public_html/apply_vacancy. This vulnerability allows attackers to execute arbitrary code via a crafted PHP file. | |||
| 8.8 HIGH | 6.5 MEDIUM | ||
Simple House Rental System v1 was discovered to contain an arbitrary file upload vulnerability via /app/register.php. This vulnerability allows attackers to execute arbitrary code via a crafted PHP file. | |||
| 9.8 CRITICAL | 7.5 HIGH | ||
Ecommerce-Website v1 was discovered to contain an arbitrary file upload vulnerability via /customer_register.php. This vulnerability allows attackers to execute arbitrary code via a crafted PHP file. | |||
| 6.5 MEDIUM | 4 MEDIUM | ||
Online Banking System in PHP v1 was discovered to contain multiple SQL injection vulnerabilities at /staff_login.php via the Staff ID and Staff Password parameters. | |||
| 8.8 HIGH | 6.5 MEDIUM | ||
Zoo Management System v1.0 was discovered to contain a SQL injection vulnerability at /public_html/animals via the class_id parameter. | |||
| 8.8 HIGH | 6.5 MEDIUM | ||
Car Rental System v1.0 contains an arbitrary file upload vulnerability via the Add Car component which allows attackers to upload a webshell and execute arbitrary code. | |||
| 4.9 MEDIUM | 4 MEDIUM | ||
Simple Bakery Shop Management System v1.0 contains a file disclosure via /bsms/?page=products. | |||