Vulnerabilities > Mayurik
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-11-27 | CVE-2023-6300 | Unspecified vulnerability in Mayurik Best Courier Management System 1.0 A vulnerability, which was classified as problematic, was found in SourceCodester Best Courier Management System 1.0. | 6.1 |
| 2023-11-27 | CVE-2023-6301 | Unspecified vulnerability in Mayurik Best Courier Management System 1.0 A vulnerability has been found in SourceCodester Best Courier Management System 1.0 and classified as problematic. | 6.1 |
| 2023-11-03 | CVE-2023-46980 | Unspecified vulnerability in Mayurik Best Courier Management System 1.0 An issue in Best Courier Management System v.1.0 allows a remote attacker to execute arbitrary code and escalate privileges via a crafted script to the userID parameter. | 9.8 |
| 2023-10-31 | CVE-2023-46451 | Cross-site Scripting vulnerability in Mayurik Best Courier Management System 1.0 Best Courier Management System v1.0 is vulnerable to Cross Site Scripting (XSS) in the change username field. | 5.4 |
| 2023-10-26 | CVE-2023-46449 | Incorrect Permission Assignment for Critical Resource vulnerability in Mayurik Inventory Management System 1.0 Sourcecodester Free and Open Source inventory management system v1.0 is vulnerable to Incorrect Access Control. | 8.8 |
| 2023-10-26 | CVE-2023-46450 | Cross-site Scripting vulnerability in Mayurik Inventory Management System 1.0 Sourcecodester Free and Open Source inventory management system 1.0 is vulnerable to Cross Site Scripting (XSS) via the Add supplier function. | 5.4 |
| 2023-10-18 | CVE-2023-46004 | Unrestricted Upload of File with Dangerous Type vulnerability in Mayurik Best Courier Management System 1.0 Sourcecodester Best Courier Management System 1.0 is vulnerable to Arbitrary file upload in the update_user function. | 7.2 |
| 2023-10-18 | CVE-2023-46005 | SQL Injection vulnerability in Mayurik Best Courier Management System 1.0 Sourcecodester Best Courier Management System 1.0 is vulnerable to SQL Injection via the parameter id in /edit_branch.php. | 9.8 |
| 2023-10-18 | CVE-2023-46006 | SQL Injection vulnerability in Mayurik Best Courier Management System 1.0 Sourcecodester Best Courier Management System 1.0 is vulnerable to SQL Injection via the parameter id in /edit_user.php. | 9.8 |
| 2023-10-18 | CVE-2023-46007 | SQL Injection vulnerability in Mayurik Best Courier Management System 1.0 Sourcecodester Best Courier Management System 1.0 is vulnerable to SQL Injection via the parameter id in /edit_staff.php. | 9.8 |