CVE-2026-6037

A vulnerability was determined in code-projects Vehicle Showroom Management System 1.0. This affects an unknown function of the file /util/AddVehicleFunction.php. This manipulation of the argument BRANCHID causes sql injection. The attack is possible to be carried out remotely. The exploit has be...

CVE-2026-6037 code-projects Vehicle Showroom Management System AddVehicleFunction.php sql injection

A vulnerability was determined in code-projects Vehicle Showroom Management System 1.0. This affects an unknown function of the file /util/AddVehicleFunction.php. This manipulation of the argument BRANCHID causes sql injection. The attack is possible to be carried out remotely. The exploit has be...

CVE-2026-6037

CVE-2026-6037 affects Code-Projects’ Vehicle Showroom Management System 1.0. The vulnerability is in the /util/AddVehicleFunction.php function where manipulation of BRANCH_ID enables SQL injection. Exploitation is remote and a public exploit has been disclosed. No remediation details are provided...

PT-2026-31902

Name of the Vulnerable Software and Affected Versions Vehicle Showroom Management System version 1.0 Description A flaw exists in code-projects Vehicle Showroom Management System 1.0, specifically within the /util/AddVehicleFunction.php file. Manipulation of the BRANCH ID argument can lead to SQL...

Code-Projects Vehicle Showroom Management System SQL注入漏洞

The Code-Projects Vehicle Showroom Management System is an open-source system for managing automobile showrooms developed by Code-Projects. Version 1.0 of the Code-Projects Vehicle Showroom Management System contains a SQL injection vulnerability. This vulnerability arises from incorrect handling...

EUVD-2022-46133

Malicious code in bioql PyPI...

CVE-2021-37805

A Stored Cross Site Scripting XSS vunerability exists in Sourcecodeste Vehicle Parking Management System affected version 1.0 is via the add-vehicle.php endpoint...

CVE-2024-3369

A vulnerability, which was classified as critical, has been found in code-projects Car Rental 1.0. Affected by this issue is some unknown functionality of the file add-vehicle.php. The manipulation of the argument Upload Image leads to unrestricted upload. The attack may be launched remotely. The...

PT-2024-25445 · Unknown · Code-Projects Car Rental

Name of the Vulnerable Software and Affected Versions: code-projects Car Rental version 1.0 Description: A critical issue has been found in the code-projects Car Rental software. The problem affects some unknown functionality of the file add-vehicle.php. The manipulation of the Upload Image...

CVE-2022-43084

A cross-site scripting XSS vulnerability in admin-add-vehicle.php of Vehicle Booking System v1.0 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the vname parameter...

CVE-2022-43083

An arbitrary file upload vulnerability in admin-add-vehicle.php of Vehicle Booking System v1.0 allows attackers to execute arbitrary code via a crafted PHP file...

Cross site scripting

A cross-site scripting XSS vulnerability in admin-add-vehicle.php of Vehicle Booking System v1.0 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the vname parameter...

Vehicle Booking System 跨站脚本漏洞

Vehicle Booking System is a vehicle booking system by Martin Mbithi Nzilani personal developer. A security vulnerability exists in Vehicle Booking System v1.0, which originates from a cross-site scripting XSS vulnerability contained in admin-add-vehicle.php. An attacker can exploit this...

PT-2022-26745 · Unknown · Vehicle Booking System

Name of the Vulnerable Software and Affected Versions: Vehicle Booking System version 1.0 Description: The issue allows attackers to execute arbitrary code via a crafted PHP file due to an arbitrary file upload vulnerability in the admin-add-vehicle.php file. Recommendations: For Vehicle Booking...

PT-2021-21875 · Unknown · Sourcecodeste Vehicle Parking Management System

Name of the Vulnerable Software and Affected Versions: Sourcecodeste Vehicle Parking Management System version 1.0 Description: A Stored Cross Site Scripting XSS issue exists in the system, allowing exploitation via the "add-vehicle.php" endpoint. Recommendations: For version 1.0, consider...

Sourcecodester Customer Relationship Management System 跨站脚本漏洞

Sourcecodester Customer Relationship Management System is an open source Php project by Carlo Montero, an individual developer. Used to provide an online platform for companies to manage interactions with their customers or prospects. A cross-site scripting vulnerability exists in Sourcecodester...

Buffer overflow

Buffer overflow in eBay Enhanced Picture Services aka EPUImageControl Class in EUPWALcontrol.dll before 1.0.3.48, as used in Sell Your Item SYI, Setup & Test eBay Enhanced Picture Services, Picture Manager Enhanced Uploader, and CARad.com Add Vehicle, allows remote attackers to execute arbitrary...