Vulnerabilities > Rental Bike Script Project

DATE CVE VULNERABILITY TITLE RISK
2019-03-21 CVE-2019-7434 Path Traversal vulnerability in Rental Bike Script Project Rental Bike Script 2.0.3
PHP Scripts Mall Rental Bike Script 2.0.3 has directory traversal via a direct request for a listing of an uploads directory.
network
low complexity
rental-bike-script-project CWE-22
4.0
2019-03-21 CVE-2019-7433 Cross-Site Request Forgery (CSRF) vulnerability in Rental Bike Script Project Rental Bike Script 2.0.3
PHP Scripts Mall Rental Bike Script 2.0.3 has Cross-Site Request Forgery (CSRF) via the Edit Profile feature.
6.8
2019-03-21 CVE-2019-7432 Cross-site Scripting vulnerability in Rental Bike Script Project Rental Bike Script 2.0.3
PHP Scripts Mall Rental Bike Script 2.0.3 has HTML injection via the STREET field in the Profile Edit section.
3.5