CVE-2021-46069
MEDIUM NUCLEIVehicle Service Management System 1.0 - XSS
Title source: llmDescription
A Stored Cross Site Scripting (XSS) vulnerability exists in Vehicle Service Management System 1.0 via the Mechanic List Section in login panel.
Exploits (1)
nomisec
WORKING POC
by plsanu · poc
https://github.com/plsanu/Vehicle-Service-Management-System-Mechanic-List-Stored-Cross-Site-Scripting-XSS
Nuclei Templates (1)
Vehicle Service Management System 1.0 - Stored Cross Site Scripting
MEDIUMVERIFIEDby TenBird
Scores
CVSS v3
4.8
EPSS
0.0567
EPSS Percentile
90.4%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:C/C:L/I:L/A:N
Details
CWE
CWE-79
Status
published
Products (1)
vehicle_service_management_system_project/vehicle_service_management_system
< 1.0
Published
Jan 06, 2022
Tracked Since
Feb 18, 2026