Security Advisory

CVE-2017-1000474

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2018-01-24 22:00:00

Last updated 2024-08-05 22:00:41

Assigner mitre

State PUBLISHED

Description

Soyket Chowdhury Vehicle Sales Management System version 2017-07-30 is vulnerable to multiple SQL Injecting in login/vehicle.php, login/profile.php, login/Actions.php, login/manage_employee.php, and login/sell.php scripts resulting in the expose of users login credentials, SQL Injection and Stored XSS vulnerability, which leads to remote code executing.

← Browse all CVEs View on cve.org ↗