Vulnerabilities > E4Jconnect
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-08-29 | CVE-2024-39653 | SQL Injection vulnerability in E4Jconnect Vikrentcar Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in E4J s.R.L. | 9.8 |
| 2024-07-11 | CVE-2024-1845 | Cross-Site Request Forgery (CSRF) vulnerability in E4Jconnect Vikrentcar The VikRentCar Car Rental Management System WordPress plugin before 1.3.2 does not have CSRF checks in some places, which could allow attackers to make logged in users perform unwanted actions via CSRF attacks | 8.8 |
| 2023-04-06 | CVE-2023-23998 | Cross-site Scripting vulnerability in E4Jconnect Vikrentcar Auth. | 4.8 |