Browse all 4 CVE security advisories affecting SaturdayDrive. AI-powered Chinese analysis, POCs, and references for each vulnerability.
SaturdayDrive is a web-based platform providing vehicle management and fleet tracking services. Historically, the application has been susceptible to multiple remote code execution vulnerabilities, cross-site scripting flaws, and privilege escalation issues, as evidenced by its four recorded CVEs. These weaknesses often stem from insufficient input validation and improper access controls. While no major public security incidents have been widely reported, the consistent pattern of vulnerabilities suggests ongoing security challenges that could potentially allow unauthorized access to sensitive vehicle data or compromise entire fleet operations if exploited.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2026-0740 | Ninja Forms - File Upload <= 3.3.26 - Unauthenticated Arbitrary File Upload — Ninja Forms - File UploadsCWE-434 | 9.8 | Critical | 2026-04-07 |
| CVE-2024-1596 | Ninja Forms File Uploads <= 3.3.16 - Unauthenticated Stored Cross-Site Scripting via File Upload — Ninja Forms - File UploadsCWE-79 | 7.2 | High | 2024-09-07 |
| CVE-2022-0888 | Ninja Forms - File Uploads Extension <= 3.3.0 - Arbitrary File Upload — Ninja Forms - File UploadsCWE-434 | 9.8 | Critical | 2022-03-23 |
| CVE-2022-0889 | Ninja Forms - File Uploads Extension <= 3.3.12 - Reflected Cross-Site Scripting — Ninja Forms - File UploadsCWE-79 | 7.2 | High | 2022-03-23 |
This page lists every published CVE security advisory associated with SaturdayDrive. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.