Mayurik

Best House Rental Management System

37 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
8.8

CVE-2024-8709

Exploit
  • EPSS 0.25%
  • Veröffentlicht 12.09.2024 03:15:04
  • Zuletzt bearbeitet 13.09.2024 16:27:21

A vulnerability classified as critical has been found in SourceCodester Best House Rental Management System 1.0. Affected is the function delete_user/save_user of the file /admin_class.php. The manipulation of the argument id leads to sql injection. ...

6.1

CVE-2024-8708

  • EPSS 0.18%
  • Veröffentlicht 12.09.2024 02:15:03
  • Zuletzt bearbeitet 18.09.2024 19:11:28

A vulnerability was found in SourceCodester Best House Rental Management System 1.0. It has been rated as problematic. This issue affects some unknown processing of the file categories.php. The manipulation leads to cross site scripting. The attack m...

5.4

CVE-2024-8610

Exploit
  • EPSS 0.07%
  • Veröffentlicht 09.09.2024 21:15:13
  • Zuletzt bearbeitet 17.09.2024 18:48:12

A vulnerability classified as problematic has been found in SourceCodester Best House Rental Management System 1.0. Affected is an unknown function of the file /index.php?page=tenants of the component New Tenant Page. The manipulation of the argument...

5.4

CVE-2024-7812

Exploit
  • EPSS 0.1%
  • Veröffentlicht 15.08.2024 03:15:05
  • Zuletzt bearbeitet 19.08.2024 18:16:21

A vulnerability classified as problematic was found in SourceCodester Best House Rental Management System 1.0. This vulnerability affects unknown code of the file /rental_0/rental/ajax.php?action=save_tenant of the component POST Parameter Handler. T...

8.8

CVE-2024-40475

  • EPSS 0.18%
  • Veröffentlicht 12.08.2024 13:38:28
  • Zuletzt bearbeitet 15.08.2024 13:40:54

SourceCodester Best House Rental Management System v1.0 is vulnerable to Incorrect Access Control via /rental/payment_report.php, /rental/balance_report.php, /rental/invoices.php, /rental/tenants.php, and /rental/users.php.

5.4

CVE-2024-40474

  • EPSS 0.19%
  • Veröffentlicht 12.08.2024 13:38:28
  • Zuletzt bearbeitet 15.08.2024 13:40:01

A Reflected Cross Site Scripting (XSS) vulnerability was found in "edit-cate.php" in SourceCodester House Rental Management System v1.0.

5.4

CVE-2024-40473

Exploit
  • EPSS 0.42%
  • Veröffentlicht 12.08.2024 13:38:28
  • Zuletzt bearbeitet 03.09.2024 19:35:13

A Stored Cross Site Scripting (XSS) vulnerability was found in "manage_houses.php" in SourceCodester Best House Rental Management System v1.0. It allows remote attackers to execute arbitrary code via "House_no" and "Description" parameter fields.

4.7

CVE-2024-40576

Exploit
  • EPSS 0.43%
  • Veröffentlicht 29.07.2024 14:15:03
  • Zuletzt bearbeitet 06.05.2025 16:42:52

Cross Site Scripting vulnerability in Best House Rental Management System 1.0 allows a remote attacker to execute arbitrary code via the "House No" and "Description" parameters in the houses page at the index.php component.

7.5

CVE-2024-39210

  • EPSS 7.67%
  • Veröffentlicht 05.07.2024 16:15:05
  • Zuletzt bearbeitet 21.11.2024 09:27:19

Best House Rental Management System v1.0 was discovered to contain an arbitrary file read vulnerability via the Page parameter at index.php. This vulnerability allows attackers to read arbitrary PHP files and access other sensitive information within...

9.8

CVE-2024-6066

Exploit
  • EPSS 0.1%
  • Veröffentlicht 17.06.2024 21:15:52
  • Zuletzt bearbeitet 21.11.2024 09:48:53

A vulnerability classified as critical has been found in SourceCodester Best House Rental Management System 1.0. Affected is an unknown function of the file payment_report.php. The manipulation of the argument month_of leads to sql injection. It is p...