Vulnerabilities > Mayurik > Courier Management System
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-12-07 | CVE-2023-46974 | Cross-site Scripting vulnerability in Mayurik Courier Management System 1.0 Cross Site Scripting vulnerability in Best Courier Management System v.1.000 allows a remote attacker to execute arbitrary code via a crafted payload to the page parameter in the URL. | 5.4 |
| 2023-12-07 | CVE-2023-48206 | Cross-site Scripting vulnerability in Mayurik Courier Management System 1.0 A Cross Site Scripting (XSS) vulnerability in GaatiTrack Courier Management System 1.0 allows a remote attacker to inject JavaScript via the page parameter to login.php or header.php. | 6.1 |
| 2023-12-07 | CVE-2023-48823 | SQL Injection vulnerability in Mayurik Courier Management System 1.0 A Blind SQL injection issue in ajax.php in GaatiTrack Courier Management System 1.0 allows an unauthenticated attacker to inject a payload via the email parameter during login. | 9.8 |