📦 Vehicle Service Management System

CVE-2021-46067 allows attackers to steal session cookies from Vehicle Service Management System 1.0, leading to full account takeover. This affects all users of the vulnerable software version. Attack...

An Unrestricted File Upload vulnerability in Vehicle Service Management System 1.0 allows remote attackers to upload malicious files containing HTML injection payloads. This affects all deployments of...

This vulnerability allows staff-level users in Vehicle Service Management System 1.0 to access admin resources and perform CRUD operations they shouldn't have permission for. It affects all deployment...

This vulnerability allows unauthenticated attackers to upload malicious PHP files to the Vehicle Service Management System 1.0, leading to remote code execution. Attackers can take full control of aff...