Vehicle Service Management System – ‘Multiple’ Cross-Site Request Forgery (CSRF) Leads to Stored Cross Site Scripting (XSS)
CVE-2021-46080 Exploit Title: Vehicle Service Management System – ‘Multiple’ Cross-Site Request Forgery (CSRF) Leads to Stored Cross Site Scripting (XSS)Exploit Author: P.L.SanuCVE: CVE-2021-46080CVSS: 4.8 MEDIUMReferences:https://www.plsanu.com/vehicle-service-management-system-multiple-cross-site-request-forgery-csrf-leads-to-stored-cross-site-scripting-xsshttps://nvd.nist.gov/vuln/detail/CVE-2021-46080https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-46080 Description:A Cross Site Request Forgery (CSRF) vulnerability exists in Vehicle Service Management System 1.0. An...