E4jconnect Vikrentcar

5 CVEs affecting E4jconnect Vikrentcar. Latest disclosed: 2025-07-03. Critical: 1, High: 3.

Top CVEs affecting E4jconnect Vikrentcar
CVESeverityScorePublishedSummary
CVE-2024-39653Critical9.32024-08-29Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in E4J s.R.L. VikRentCar allows SQL Injection.This issue aff…
CVE-2024-11640High8.82025-03-08The VikRentCar Car Rental Management System plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 1.4.2. This…
CVE-2024-1845High8.82024-07-11The VikRentCar Car Rental Management System WordPress plugin before 1.3.2 does not have CSRF checks in some places, which could allow attackers to make logged…
CVE-2025-5322High7.22025-07-03The VikRentCar Car Rental Management System plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in the do_updateca…
CVE-2023-23998Medium5.92023-04-06Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in E4J s.R.L. VikRentCar Car Rental Management System plugin <= 1.3.0 versions.