Logo Cibersecurity made in Europe Logo UE
Headline Vulnerabilities discovered affecting car rental company Project Worlds Official
Year 2020
Month March
Country United States

System 1 of Project Worlds Official Car Rental – a rental car company – is vulnerable to multiple SQL injection issues, as evidenced by the email and parameters (account.php), uname and pass parameters (login.php), and the id parameter (book_car.php) This allows a malicious user to dump the MySQL database and bypass the login authentication request.

Intentionality Cracker
Target Company
Type of company Rent
Data / Life Data
Access Remote
System Servers
Recognized by brand No
Source https://nvd.nist.gov/vuln/detail/CVE-2020-11544

Este sitio web utiliza cookies para que usted tenga la mejor experiencia de usuario. Si continúa navegando está dando su consentimiento para la aceptación de las mencionadas cookies y la aceptación de nuestra política de cookies, pinche el enlace para mayor información.plugin cookies

Aviso de cookies