CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

NVD•added 2026/04/13 2:16 a.m.•2 views

CVE-2026-6148

7.5CVSS0.00014EPSS

ATTACKERKB•added 2026/04/13 1:45 a.m.•2 views

CVE-2026-6149

7.5CVSS6.9AI score0.00014EPSS

Exploits0References5Affected Software1

Vulnrichment•added 2026/04/13 1:45 a.m.•0 views

CVE-2026-6149 code-projects Vehicle Showroom Management System BookVehicleFunction.php sql injection

7.5CVSS6.9AI score0.00014EPSS

Cvelist•added 2026/04/13 1:30 a.m.•26 views

CVE-2026-6148 code-projects Vehicle Showroom Management System MonthTotalReportUpdateFunction.php sql injection

7.5CVSS0.00014EPSS

ATTACKERKB•added 2026/04/13 1:30 a.m.•2 views

CVE-2026-6148

7.5CVSS6.9AI score0.00014EPSS

Exploits0References5Affected Software1

CNNVD•added 2026/04/13 12:0 a.m.•2 views

Code-Projects Vehicle Showroom Management System SQL注入漏洞

The Code-Projects Vehicle Showroom Management System is an open-source vehicle exhibition hall management system developed by Code-Projects. Version 1.0 of the Code-Projects Vehicle Showroom Management System contains a SQL injection vulnerability. This vulnerability arises from improper handling...

7.5CVSS7.2AI score0.00014EPSS

Positive Technologies•added 2026/04/13 12:0 a.m.•3 views

PT-2026-32222

Name of the Vulnerable Software and Affected Versions code-projects Vehicle Showroom Management System version 1.0 Description A flaw exists in an unknown functionality of the file /util/BookVehicleFunction.php. Manipulation of the BRANCH ID argument can lead to SQL injection. The attack can be...

7.5CVSS7AI score0.00014EPSS

Exploits0References10

Positive Technologies•added 2026/04/13 12:0 a.m.•2 views

PT-2026-32221

Name of the Vulnerable Software and Affected Versions Vehicle Showroom Management System version 1.0 Description A SQL injection issue exists in an unknown functionality of the file /util/MonthTotalReportUpdateFunction.php. Manipulating the BRANCH ID argument can trigger the injection. The attack...

7.5CVSS7.1AI score0.00014EPSS

Exploits0References10

EUVD•added 2026/04/10 9:31 a.m.•0 views

EUVD-2026-21350

A vulnerability was determined in code-projects Vehicle Showroom Management System 1.0. This affects an unknown function of the file /util/AddVehicleFunction.php. This manipulation of the argument BRANCHID causes sql injection. The attack is possible to be carried out remotely. The exploit has be...

EUVD•added 2026/04/10 9:31 a.m.•0 views

EUVD-2026-21352

A vulnerability was identified in code-projects Vehicle Showroom Management System 1.0. This impacts an unknown function of the file /util/RegisterCustomerFunction.php. Such manipulation of the argument BRANCHID leads to sql injection. The attack may be performed from remote. The exploit is...

EUVD•added 2026/04/10 9:31 a.m.•1 views

EUVD-2026-21338

A flaw has been found in code-projects Vehicle Showroom Management System 1.0. Impacted is an unknown function of the file /BranchManagement/ProfitAndLossReport.php. Executing a manipulation of the argument BRANCHID can lead to cross site scripting. The attack may be launched remotely. The exploi...

5.3CVSS4.2AI score0.00013EPSS

NVD•added 2026/04/10 9:16 a.m.•0 views

CVE-2026-6037

7.5CVSS0.00043EPSS

NVD•added 2026/04/10 9:16 a.m.•0 views

CVE-2026-6038

7.5CVSS0.00043EPSS

CVE•added 2026/04/10 8:45 a.m.•6 views

CVE-2026-6038

The CVE affects code-projects Vehicle Showroom Management System 1.0. A SQL injection vulnerability exists in /util/RegisterCustomerFunction.php triggered by manipulating BRANCH_ID. The attack can be performed remotely and a public exploit is available.

Cvelist•added 2026/04/10 8:45 a.m.•28 views

CVE-2026-6038 code-projects Vehicle Showroom Management System RegisterCustomerFunction.php sql injection

7.5CVSS0.00043EPSS

Vulnrichment•added 2026/04/10 8:45 a.m.•2 views

CVE-2026-6038 code-projects Vehicle Showroom Management System RegisterCustomerFunction.php sql injection