CVE Details
Basic Information
| Title | code-projects Vehicle Management filter1.php sql injection |
|---|---|
| Type | cve |
| Published | 2025-07-31T15:02:05.653Z |
| Modified | 2025-07-31T15:02:05.653Z |
Product Information
| Vendor | code-projects |
|---|---|
| Product | Vehicle Management |
| Version | 1.0 |
CVSS Information
| Base Score | 6.9 (MEDIUM) |
|---|---|
| Attack Vector | CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P |
AI Analysis
| AI Description | A SQL injection vulnerability was discovered in code-projects Vehicle Management 1.0, specifically in the filter1.php file. This allows remote attackers to inject malicious SQL code, potentially leading to data manipulation or extraction. The vulnerability has been publicly disclosed and could be exploited. |
|---|---|
| AI Severity | Medium |
| AI Vendor | code-projects |
| AI Product | Vehicle Management |
| AI Version | 1.0 |
Affected Products
- code-projects Vehicle Management 1.0
Additional Information
| CWE List | CWE-89, CWE-74 |
|---|---|
| Source | VulDB |
Description
A vulnerability, which was classified as critical, was found in code-projects Vehicle Management 1.0. Affected is an unknown function of the file /filter1.php. The manipulation of the argument vehicle leads to sql injection. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used.