CVE-2026-6036 | code-projects Vehicle Showroom Management System 1.0 VehicleDetailsFunction.php VEHICLE_ID sql injection

Inserito da Angelo Barbosa | Apr 9, 2026 | CVE

A vulnerability categorized as critical has been discovered in code-projects Vehicle Showroom Management System 1.0. The impacted element is an unknown function of the file /util/VehicleDetailsFunction.php. The manipulation of the argument VEHICLE_ID results in sql injection.

This vulnerability is identified as CVE-2026-6036. The attack can be executed remotely. Additionally, an exploit exists.

CVE-2026-6036 | code-projects Vehicle Showroom Management System 1.0 VehicleDetailsFunction.php VEHICLE_ID sql injection

Post correlati

CVE-2024-5712 | stitionai devika cross-site request forgery

CVE-2024-1100 | Vadi Corporate Information Systems DIGIKENT GIS up to 2.23.5 sql injection

CVE-2024-35757 | 5 Star Plugins Easy Age Verify Plugin up to 1.8.2 on WordPress cross site scripting

CVE-2023-37225 | Pexip Infinity up to 31 Link cross site scripting