Vulnerabilities (CVE)

  1. OpenCVE
  2. Vulnerabilities (CVE)
Filtered by vendor Oretnom23 Subscribe
Filtered by product Packers And Movers Management System
Total 5 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2024-57522 1 Oretnom23 1 Packers And Movers Management System 2025-04-22 N/A N/A
SourceCodester Packers and Movers Management System v1.0 is vulnerable to Cross Site Scripting (XSS) in Users.php. An attacker can inject a malicious script into the username or name field during user creation.
CVE-2024-57523 1 Oretnom23 1 Packers And Movers Management System 2025-04-22 N/A N/A
Cross Site Request Forgery (CSRF) in Users.php in SourceCodester Packers and Movers Management System 1.0 allows attackers to create unauthorized admin accounts via crafted requests sent to an authenticated admin user.
CVE-2024-48427 1 Oretnom23 1 Packers And Movers Management System 2024-10-31 N/A 8.8 HIGH
A SQL injection vulnerability in Sourcecodester Packers and Movers Management System v1.0 allows remote authenticated users to execute arbitrary SQL commands via the id parameter in /mpms/admin/?page=services/manage_service&id
CVE-2023-46956 1 Oretnom23 1 Packers And Movers Management System 2024-10-15 N/A 7.2 HIGH
SQL injection vulnerability in Packers and Movers Management System v.1.0 allows a remote attacker to execute arbitrary code via crafted payload to the /mpms/admin/?page=user/manage_user&id file.
CVE-2023-46435 1 Oretnom23 1 Packers And Movers Management System 2023-10-30 N/A 9.8 CRITICAL
Sourcecodester Packers and Movers Management System v1.0 is vulnerable to SQL Injection via mpms/?p=services/view_service&id.