Mayuri k Best Courier Management System 1.0
Approved changes feed: RSS · Atom
cpe:2.3:a:mayurik:best_courier_management_system:1.0:*:*:*:*:*:*:*
part: a version: 1.0 update: *
| Vendor | Mayurik (727a23cf-b3c3-54bf-b09e-da411a18e16c) |
|---|---|
| Product | Best Courier Management System (24e073a9-5954-5d08-995f-467878469e02) |
| Edition | * |
| Language | * |
| Software edition | * |
| Target software | * |
| Target hardware | * |
| Other | * |
| Notes | Imported from NVD CPE 2.0 feed |
PURL mappings
| PURL | Source | Last updated |
|---|---|---|
| No PURL mappings for this CPE yet. | ||
Vulnerability references
| Identifier | cpeApplicability | Submitted | db.gcve.eu details | Rationale |
|---|---|---|---|---|
CVE:CVE-2024-4945 |
vulnerable | 2026-06-03 14:57:16.522343 |
SourceCodester Best Courier Management System view_parcel.php unrestricted upload
MEDIUM (4.3)
A vulnerability was found in SourceCodester Best Courier Management System 1.0. It has been classified as problematic. Affected is an unknown function of the file view_parcel.php. The manipulation of the argument id leads to unrestricted upload. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used. The identifier of this vulnerability is VDB-264480.
Published: 2024-05-16T05:00:05.656Z
Updated: 2024-08-01T20:55:10.344Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-48581 |
vulnerable | 2026-06-03 14:57:09.968304 |
Details available
File Upload vulnerability in Best courier management system in php v.1.0 allows a remote attacker to execute arbitrary code via the admin_class.php component.
Published: 2024-10-25T00:00:00.000Z
Updated: 2024-10-25T19:47:50.410Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-48580 |
vulnerable | 2026-06-03 14:57:09.967803 |
Details available
SQL Injection vulnerability in Best courier management system in php v.1.0 allows a remote attacker to execute arbitrary code via the email parameter of the login request.
Published: 2024-10-25T00:00:00.000Z
Updated: 2024-10-25T19:44:15.354Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-24407 |
vulnerable | 2026-06-03 14:55:05.328274 |
Details available
SQL Injection vulnerability in Best Courier management system v.1.0 allows a remote attacker to obtain sensitive information via print_pdets.php component.
Published: 2024-03-28T00:00:00.000Z
Updated: 2024-08-23T18:18:50.429Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2023-6898 |
vulnerable | 2026-06-03 14:53:59.267820 |
SourceCodester Best Courier Management System manage_user.php sql injection
MEDIUM (5.5)
A vulnerability classified as critical has been found in SourceCodester Best Courier Management System 1.0. Affected is an unknown function of the file manage_user.php. The manipulation of the argument id leads to sql injection. The exploit has been disclosed to the public and may be used. The identifier of this vulnerability is VDB-248256.
Published: 2023-12-17T10:31:04.117Z
Updated: 2025-05-07T20:40:47.778Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2023-6301 |
vulnerable | 2026-06-03 14:53:51.422240 |
SourceCodester Best Courier Management System GET Parameter parcel_list.php cross site scripting
LOW (3.5)
A vulnerability has been found in SourceCodester Best Courier Management System 1.0 and classified as problematic. Affected by this vulnerability is an unknown functionality of the file parcel_list.php of the component GET Parameter Handler. The manipulation of the argument id with the input </TiTlE><ScRiPt>alert(1)</ScRiPt> leads to cross site scripting. The attack can be launched remotely. The exploit has been disclosed to the public and may be used. The associated identifier of this vulnerability is VDB-246127.
Published: 2023-11-26T23:31:05.687Z
Updated: 2024-08-02T08:28:21.497Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2023-6300 |
vulnerable | 2026-06-03 14:53:51.421890 |
SourceCodester Best Courier Management System cross site scripting
LOW (3.5)
A vulnerability, which was classified as problematic, was found in SourceCodester Best Courier Management System 1.0. Affected is an unknown function. The manipulation of the argument page with the input </TiTlE><ScRiPt>alert(1)</ScRiPt> leads to cross site scripting. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used. VDB-246126 is the identifier assigned to this vulnerability.
Published: 2023-11-26T23:31:04.652Z
Updated: 2024-10-10T20:33:30.982Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2023-5302 |
vulnerable | 2026-06-03 14:53:48.199774 | db.gcve.eu details are currently unavailable. | Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2023-5273 |
vulnerable | 2026-06-03 14:53:48.151841 |
SourceCodester Best Courier Management System manage_parcel_status.php cross site scripting
LOW (3.5)
A vulnerability classified as problematic was found in SourceCodester Best Courier Management System 1.0. This vulnerability affects unknown code of the file manage_parcel_status.php. The manipulation of the argument id leads to cross site scripting. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used. VDB-240886 is the identifier assigned to this vulnerability.
Published: 2023-09-29T16:31:06.144Z
Updated: 2024-08-02T07:52:08.636Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2023-5272 |
vulnerable | 2026-06-03 14:53:48.151384 |
SourceCodester Best Courier Management System GET Parameter edit_parcel.php sql injection
MEDIUM (5.5)
A vulnerability classified as critical has been found in SourceCodester Best Courier Management System 1.0. This affects an unknown part of the file edit_parcel.php of the component GET Parameter Handler. The manipulation of the argument id leads to sql injection. The exploit has been disclosed to the public and may be used. The identifier VDB-240885 was assigned to this vulnerability.
Published: 2023-09-29T16:31:04.970Z
Updated: 2024-08-02T07:52:08.540Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2023-5271 |
vulnerable | 2026-06-03 14:53:48.150863 |
SourceCodester Best Courier Management System edit_parcel.php sql injection
MEDIUM (5.5)
A vulnerability was found in SourceCodester Best Courier Management System 1.0. It has been rated as critical. Affected by this issue is some unknown functionality of the file edit_parcel.php. The manipulation of the argument email leads to sql injection. The exploit has been disclosed to the public and may be used. The identifier of this vulnerability is VDB-240884.
Published: 2023-09-29T16:00:07.092Z
Updated: 2024-08-02T07:52:08.477Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2023-5270 |
vulnerable | 2026-06-03 14:53:48.149138 |
SourceCodester Best Courier Management System view_parcel.php sql injection
MEDIUM (5.5)
A vulnerability was found in SourceCodester Best Courier Management System 1.0. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file view_parcel.php. The manipulation of the argument id leads to sql injection. The exploit has been disclosed to the public and may be used. The associated identifier of this vulnerability is VDB-240883.
Published: 2023-09-29T16:00:05.812Z
Updated: 2024-08-02T07:52:08.680Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2023-5269 |
vulnerable | 2026-06-03 14:53:48.148601 |
SourceCodester Best Courier Management System GET Parameter parcel_list.php sql injection
MEDIUM (5.5)
A vulnerability was found in SourceCodester Best Courier Management System 1.0. It has been classified as critical. Affected is an unknown function of the file parcel_list.php of the component GET Parameter Handler. The manipulation of the argument id/s leads to sql injection. The exploit has been disclosed to the public and may be used.
Published: 2023-09-29T15:31:05.343Z
Updated: 2025-03-06T14:25:24.388Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2023-46980 |
vulnerable | 2026-06-03 14:53:16.751951 |
Details available
An issue in Best Courier Management System v.1.0 allows a remote attacker to execute arbitrary code and escalate privileges via a crafted script to the userID parameter.
Published: 2023-11-03T00:00:00.000Z
Updated: 2024-09-06T13:45:57.895Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2023-46451 |
vulnerable | 2026-06-03 14:53:10.045502 |
Details available
Best Courier Management System v1.0 is vulnerable to Cross Site Scripting (XSS) in the change username field.
Published: 2023-10-31T00:00:00.000Z
Updated: 2024-09-05T18:58:23.600Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2023-46007 |
vulnerable | 2026-06-03 14:53:08.819537 |
Details available
Sourcecodester Best Courier Management System 1.0 is vulnerable to SQL Injection via the parameter id in /edit_staff.php.
Published: 2023-10-18T00:00:00.000Z
Updated: 2024-09-13T15:08:26.874Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2023-46006 |
vulnerable | 2026-06-03 14:53:08.819146 |
Details available
Sourcecodester Best Courier Management System 1.0 is vulnerable to SQL Injection via the parameter id in /edit_user.php.
Published: 2023-10-18T00:00:00.000Z
Updated: 2024-09-13T15:08:51.480Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2023-46005 |
vulnerable | 2026-06-03 14:53:08.818724 |
Details available
Sourcecodester Best Courier Management System 1.0 is vulnerable to SQL Injection via the parameter id in /edit_branch.php.
Published: 2023-10-18T00:00:00.000Z
Updated: 2024-09-13T15:11:52.644Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2023-46004 |
vulnerable | 2026-06-03 14:53:08.818220 |
Details available
Sourcecodester Best Courier Management System 1.0 is vulnerable to Arbitrary file upload in the update_user function.
Published: 2023-10-18T00:00:00.000Z
Updated: 2024-09-13T15:12:34.935Z |
Imported from gcve-enriched-dumps CVE data |
Contribute
You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.