HackWidMaddy

2 exploits Active since Feb 2025
CVE-2024-57522 NOMISEC MEDIUM WRITEUP
SourceCodester Packers and Movers Management System 1.0 - Stored Cross-Site Scripting in Users.php
SourceCodester Packers and Movers Management System v1.0 is vulnerable to Cross Site Scripting (XSS) in Users.php. An attacker can inject a malicious script into the username or name field during user creation.
1 stars
CVSS 6.4
CVE-2024-57523 NOMISEC MEDIUM WRITEUP
SourceCodester Packers and Movers Management System 1.0 - Cross-Site Request Forgery in Users.php
Cross Site Request Forgery (CSRF) in Users.php in SourceCodester Packers and Movers Management System 1.0 allows attackers to create unauthorized admin accounts via crafted requests sent to an authenticated admin user.
CVSS 4.5