Rental Bike Script
CVEs (8)
| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2017-17906 | Cri | 0.64 | 9.8 | 0.01 | Dec 27, 2017 | PHP Scripts Mall Car Rental Script has SQL Injection via the admin/carlistedit.php carid parameter. | ||
| CVE-2019-7433 | Hig | 0.57 | 8.8 | 0.01 | Mar 21, 2019 | PHP Scripts Mall Rental Bike Script 2.0.3 has Cross-Site Request Forgery (CSRF) via the Edit Profile feature. | ||
| CVE-2017-17905 | Hig | 0.57 | 8.8 | 0.01 | Dec 27, 2017 | PHP Scripts Mall Car Rental Script has CSRF via admin/sitesettings.php. | ||
| CVE-2019-7434 | Med | 0.42 | 6.5 | 0.01 | Mar 21, 2019 | PHP Scripts Mall Rental Bike Script 2.0.3 has directory traversal via a direct request for a listing of an uploads directory. | ||
| CVE-2017-17907 | Med | 0.40 | 6.1 | 0.01 | Dec 27, 2017 | PHP Scripts Mall Car Rental Script has XSS via the admin/areaedit.php carid parameter or the admin/sitesettings.php websitename parameter. | ||
| CVE-2019-7432 | Med | 0.35 | 5.4 | 0.01 | Mar 21, 2019 | PHP Scripts Mall Rental Bike Script 2.0.3 has HTML injection via the STREET field in the Profile Edit section. | ||
| CVE-2018-15182 | Med | 0.35 | 5.4 | 0.01 | Aug 9, 2018 | PHP Scripts Mall Car Rental Script 2.0.8 has XSS via the FirstName and LastName fields. | ||
| CVE-2018-6904 | Med | 0.35 | 5.4 | 0.01 | Apr 12, 2018 | PHP Scripts Mall Car Rental Script 2.0.8 has XSS via the User Name field in an Edit Profile action. |
- risk 0.64cvss 9.8epss 0.01
PHP Scripts Mall Car Rental Script has SQL Injection via the admin/carlistedit.php carid parameter.
- risk 0.57cvss 8.8epss 0.01
PHP Scripts Mall Rental Bike Script 2.0.3 has Cross-Site Request Forgery (CSRF) via the Edit Profile feature.
- risk 0.57cvss 8.8epss 0.01
PHP Scripts Mall Car Rental Script has CSRF via admin/sitesettings.php.
- risk 0.42cvss 6.5epss 0.01
PHP Scripts Mall Rental Bike Script 2.0.3 has directory traversal via a direct request for a listing of an uploads directory.
- risk 0.40cvss 6.1epss 0.01
PHP Scripts Mall Car Rental Script has XSS via the admin/areaedit.php carid parameter or the admin/sitesettings.php websitename parameter.
- risk 0.35cvss 5.4epss 0.01
PHP Scripts Mall Rental Bike Script 2.0.3 has HTML injection via the STREET field in the Profile Edit section.
- risk 0.35cvss 5.4epss 0.01
PHP Scripts Mall Car Rental Script 2.0.8 has XSS via the FirstName and LastName fields.
- risk 0.35cvss 5.4epss 0.01
PHP Scripts Mall Car Rental Script 2.0.8 has XSS via the User Name field in an Edit Profile action.