Car Rental Script Project Car Rental Script — known CVE vulnerabilities
Every CVE whose affected-product data names Car Rental Script Project Car Rental Script, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVE-2018-20647 — CVSS 6.5 (medium): PHP Scripts Mall Car Rental Script 2.0.8 has directory traversal via a direct request for a listing of an image directory such as an…
CVE-2017-17907 — CVSS 6.1 (medium): PHP Scripts Mall Car Rental Script has XSS via the admin/areaedit.php carid parameter or the admin/sitesettings.php websitename parameter.
CVE-2018-6904 — CVSS 5.4 (medium): PHP Scripts Mall Car Rental Script 2.0.8 has XSS via the User Name field in an Edit Profile action.