Vulnerabilities > Mayurik > Best Courier Management System > Critical

DATE CVE VULNERABILITY TITLE RISK
2023-11-03 CVE-2023-46980 Unspecified vulnerability in Mayurik Best Courier Management System 1.0
An issue in Best Courier Management System v.1.0 allows a remote attacker to execute arbitrary code and escalate privileges via a crafted script to the userID parameter.
network
low complexity
mayurik
critical
 9.8
9.8
2023-10-18 CVE-2023-46007 SQL Injection vulnerability in Mayurik Best Courier Management System 1.0
Sourcecodester Best Courier Management System 1.0 is vulnerable to SQL Injection via the parameter id in /edit_staff.php.
network
low complexity
mayurik CWE-89
critical
 9.8
9.8
2023-10-18 CVE-2023-46006 SQL Injection vulnerability in Mayurik Best Courier Management System 1.0
Sourcecodester Best Courier Management System 1.0 is vulnerable to SQL Injection via the parameter id in /edit_user.php.
network
low complexity
mayurik CWE-89
critical
 9.8
9.8
2023-10-18 CVE-2023-46005 SQL Injection vulnerability in Mayurik Best Courier Management System 1.0
Sourcecodester Best Courier Management System 1.0 is vulnerable to SQL Injection via the parameter id in /edit_branch.php.
network
low complexity
mayurik CWE-89
critical
 9.8
9.8