N/A

Soyket Chowdhury Vehicle Sales Management System version 2017-07-30 is vulnerable to multiple SQL Injecting in login/vehicle.php, login/profile.php, login/Actions.php, login/manage_employee.php, and login/sell.php scripts resulting in the expose of user's login credentials, SQL Injection and Stored XSS vulnerability, which leads to remote code executing.

N/A

N/A

Soyket Chowdhury Vehicle Sales Management System 安全漏洞

Soyket Chowdhury Vehicle Sales Management System是一套在线车辆销售系统脚本。 Soyket Chowdhury Vehicle Sales Management System 2017-07-30版本中的多个脚本存在安全漏洞。攻击者可利用该漏洞获取用户登录账户，实施SQL注入和跨站脚本攻击，从而执行代码。以下脚本受到影响：login/vehicle.php；login/profile.php；login/Actions.php；login/manage_em

N/A

N/A