Code-projects Online_car_rental_system
2 CVEs affecting Code-projects Online_car_rental_system. Latest disclosed: 2025-01-13. Critical: 0, High: 0.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2024-57488 | Medium | 6.5 | 2025-01-13 | Code-Projects Online Car Rental System 1.0 is vulnerable to Cross Site Scripting (XSS) via the vehicalorcview parameter in /admin/edit-vehicle.php. |
CVE-2024-57487 | Medium | 6.5 | 2025-01-13 | In Code-Projects Online Car Rental System 1.0, the file upload feature does not validate file extensions or MIME types allowing an attacker to upload a PHP she… |