Vulnerabilities (CVE)

  1. OpenCVE
  2. Vulnerabilities (CVE)
Filtered by vendor Oretnom23 Subscribe
Filtered by product Packers And Movers Management System
Total 6 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2024-57522 1 Oretnom23 1 Packers And Movers Management System 2025-04-22 N/A 6.4 MEDIUM
SourceCodester Packers and Movers Management System v1.0 is vulnerable to Cross Site Scripting (XSS) in Users.php. An attacker can inject a malicious script into the username or name field during user creation.
CVE-2024-57523 1 Oretnom23 1 Packers And Movers Management System 2025-04-22 N/A 4.5 MEDIUM
Cross Site Request Forgery (CSRF) in Users.php in SourceCodester Packers and Movers Management System 1.0 allows attackers to create unauthorized admin accounts via crafted requests sent to an authenticated admin user.
CVE-2023-46956 1 Oretnom23 1 Packers And Movers Management System 2024-11-21 N/A 7.2 HIGH
SQL injection vulnerability in Packers and Movers Management System v.1.0 allows a remote attacker to execute arbitrary code via crafted payload to the /mpms/admin/?page=user/manage_user&id file.
CVE-2023-46435 1 Oretnom23 1 Packers And Movers Management System 2024-11-21 N/A 9.8 CRITICAL
Sourcecodester Packers and Movers Management System v1.0 is vulnerable to SQL Injection via mpms/?p=services/view_service&id.
CVE-2023-30415 1 Oretnom23 1 Packers And Movers Management System 2024-11-21 N/A 9.8 CRITICAL
Sourcecodester Packers and Movers Management System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /inquiries/view_inquiry.php.
CVE-2024-48427 1 Oretnom23 1 Packers And Movers Management System 2024-10-31 N/A 8.8 HIGH
A SQL injection vulnerability in Sourcecodester Packers and Movers Management System v1.0 allows remote authenticated users to execute arbitrary SQL commands via the id parameter in /mpms/admin/?page=services/manage_service&id