VYPR

Cab Management System

by Sourcecodester

CVEs (3)

  • CVE-2024-51030MedNov 8, 2024
    risk 0.42cvss 6.5epss 0.01

    A SQL injection vulnerability in manage_client.php and view_cab.php of Sourcecodester Cab Management System 1.0 allows remote attackers to execute arbitrary SQL commands via the id parameter, leading to unauthorized access and potential compromise of sensitive data within the…

  • CVE-2024-5893MedJun 12, 2024
    risk 0.41cvss 6.3epss 0.01

    A vulnerability classified as critical has been found in SourceCodester Cab Management System 1.0. This affects an unknown part of the file /cms/classes/Users.php?f=delete_client. The manipulation of the argument id leads to sql injection. It is possible to initiate the attack…

  • CVE-2024-51031MedNov 8, 2024
    risk 0.35cvss 5.4epss 0.00

    A Cross-site Scripting (XSS) vulnerability in manage_account.php in Sourcecodester Cab Management System 1.0 allows remote authenticated users to inject arbitrary web scripts via the "First Name," "Middle Name," and "Last Name" fields.