VYPR

House Rental

by Projectworlds

CVEs (2)

  • CVE-2020-23833Sep 15, 2020
    risk 0.00cvss epss 0.04

    Projectworlds House Rental v1.0 suffers from an unauthenticated SQL Injection vulnerability, allowing remote attackers to execute arbitrary code on the hosting webserver via a malicious index.php POST request.

  • CVE-2020-24202Aug 27, 2020
    risk 0.00cvss epss 0.03

    File Upload component in Projects World House Rental v1.0 suffers from an arbitrary file upload vulnerability with regular users, which allows remote attackers to conduct code execution.