Vulnerabilities > Courier Management System Project > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-03-04 | CVE-2020-35329 | SQL Injection vulnerability in Courier Management System Project Courier Management System 1.0 Courier Management System 1.0 1.0 is affected by SQL Injection via 'MULTIPART street '. | 6.5 |
| 2021-03-04 | CVE-2020-35328 | Cross-site Scripting vulnerability in Courier Management System Project Courier Management System 1.0 Courier Management System 1.0 - 'First Name' Stored XSS | 5.4 |
| 2021-03-04 | CVE-2020-35327 | SQL Injection vulnerability in Courier Management System Project Courier Management System 1.0 SQL injection vulnerability was discovered in Courier Management System 1.0, which can be exploited via the ref_no (POST) parameter to admin_class.php | 6.5 |