Courier Management System Project Courier Management System — known CVE vulnerabilities
Every CVE whose affected-product data names Courier Management System Project Courier Management System, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (4)
CVE-2021-46198 — CVSS 9.8 (critical): An SQL Injection vulnerability exists in Sourceodester Courier Management System 1.0 via the email parameter in /cms/ajax.php app.
CVE-2020-35327 — CVSS 6.5 (medium): SQL injection vulnerability was discovered in Courier Management System 1.0, which can be exploited via the ref_no (POST) parameter to…