CVE-2026-6153 | code-projects Vehicle Showroom Management System 1.0 StaffDetailsFunction.php STAFF_ID sql injection

Inserito da Angelo Barbosa | Apr 12, 2026 | CVE

A vulnerability was found in code-projects Vehicle Showroom Management System 1.0 and classified as critical. Impacted is an unknown function of the file /util/StaffDetailsFunction.php. Such manipulation of the argument STAFF_ID leads to sql injection.

This vulnerability is uniquely identified as CVE-2026-6153. The attack can be launched remotely. Moreover, an exploit is present.

CVE-2026-6153 | code-projects Vehicle Showroom Management System 1.0 StaffDetailsFunction.php STAFF_ID sql injection

Post correlati

CVE-2024-10175 | labibahmed42 Pricing Tables for WPBakery Page Builder Plugin up to 1.4 on WordPress Shortcode wdo_pricing_tables cross site scripting

CVE-2025-48866 | OWASP ModSecurity up to 2.9.9 sanitiseArg/sanitizeArg excessive platform resource consumption within a loop

CVE-2024-4036 | Sydney Toolbox Plugin up to 1.30 on WordPress cross site scripting

CVE-2024-9618 | litonice13 Master Addons Plugin up to 2.0.7.2 on WordPress cross site scripting