Note:
This project will be discontinued after December 13, 2021. [more]
Product:
Vehicle_record_management_system
(Anujk305)| Repositories |
Unknown: This might be proprietary software. |
| #Vulnerabilities | 5 |
| Date | Id | Summary | Products | Score | Patch | Annotated |
|---|---|---|---|---|---|---|
| 2025-06-10 | CVE-2025-5913 | A vulnerability was found in PHPGurukul Vehicle Record Management System 1.0. It has been rated as critical. This issue affects some unknown processing of the file /admin/search-vehicle.php. The manipulation of the argument searchinputdata leads to sql injection. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used. | Vehicle_record_management_system | 9.8 | ||
| 2025-05-15 | CVE-2025-44181 | Phpgurukul Vehicle Record Management System v1.0 is vulnerable to Cross Site Scripting (XSS) in /admin/add-brand.php via the brandname parameter. | Vehicle_record_management_system | N/A | ||
| 2025-05-15 | CVE-2025-44180 | Phpgurukul Vehicle Record Management System v1.0 is vulnerable to Cross Site Scripting (XSS) in /edit-brand.php?bid={brandId}. | Vehicle_record_management_system | N/A | ||
| 2025-05-15 | CVE-2025-44182 | Phpgurukul Vehicle Record Management System v1.0 is vulnerable to Cross Site Scripting (XSS) via the vehiclename, modelnumber, regnumber, vehiclesubtype, chasisnum, enginenumber' in the /admin/edit-vehicle.php component. This allows attackers to execute arbitrary code. | Vehicle_record_management_system | N/A | ||
| 2025-05-15 | CVE-2025-44183 | Phpgurukul Vehicle Record Management System v1.0 is vulnerable to Cross Site Scripting (XSS) in /admin/profile.php via the name, email, and mobile parameters. | Vehicle_record_management_system | N/A |