Every CVE whose affected-product data names Tramyardg Autoexpress, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (4)
CVE-2023-48901 — CVSS 9.8 (critical): A SQL injection vulnerability in tramyardg Autoexpress version 1.3.0, allows remote unauthenticated attackers to execute arbitrary SQL…
CVE-2023-48902 — CVSS 9.8 (critical): An issue was discovered in tramyardg autoexpress version 1.3.0, allows unauthenticated remote attackers to escalate privileges, update car…
CVE-2024-30974 — CVSS 7.3 (high): SQL Injection vulnerability in autoexpress v.1.3.0 allows attackers to run arbitrary SQL commands via the carId parameter.