Vulnerabilities (CVE)

Filtered by vendor Mayurik Subscribe
Filtered by product Petrol Pump Management
Total 5 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2024-10380 1 Mayurik 1 Petrol Pump Management 2024-11-01 6.5 MEDIUM 7.5 HIGH
A vulnerability, which was classified as critical, has been found in SourceCodester Petrol Pump Management Software 1.0. Affected by this issue is some unknown functionality of the file /admin/ajax_product.php. The manipulation of the argument drop_services leads to sql injection. The attack may be launched remotely. The exploit has been disclosed to the public and may be used.
CVE-2024-10355 1 Mayurik 1 Petrol Pump Management 2024-10-30 5.8 MEDIUM 4.9 MEDIUM
A vulnerability, which was classified as critical, has been found in SourceCodester Petrol Pump Management Software 1.0. Affected by this issue is some unknown functionality of the file /admin/invoice.php. The manipulation of the argument id leads to sql injection. The attack may be launched remotely. The exploit has been disclosed to the public and may be used.
CVE-2024-10354 1 Mayurik 1 Petrol Pump Management 2024-10-30 5.8 MEDIUM 4.9 MEDIUM
A vulnerability classified as critical was found in SourceCodester Petrol Pump Management Software 1.0. Affected by this vulnerability is an unknown functionality of the file /admin/print.php. The manipulation of the argument id leads to sql injection. The attack can be launched remotely. The exploit has been disclosed to the public and may be used.
CVE-2024-10406 1 Mayurik 1 Petrol Pump Management 2024-10-29 6.5 MEDIUM 7.2 HIGH
A vulnerability, which was classified as critical, has been found in SourceCodester Petrol Pump Management Software 1.0. Affected by this issue is some unknown functionality of the file /admin/edit_fuel.php. The manipulation of the argument id leads to sql injection. The attack may be launched remotely. The exploit has been disclosed to the public and may be used.
CVE-2024-10407 1 Mayurik 1 Petrol Pump Management 2024-10-29 6.5 MEDIUM 7.2 HIGH
A vulnerability, which was classified as critical, was found in SourceCodester Petrol Pump Management Software 1.0. This affects an unknown part of the file /admin/edit_customer.php. The manipulation of the argument id leads to sql injection. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used.