Car Rental Management System is a PHP/MySQLi based car rental management system. SQL injection vulnerability exists in Car Rental Management System 1.0. An attacker can exploit this vulnerability to conduct SQL injection attacks via the id parameter in view_car.php or the car_id parameter in booking.php.