CVE-2025-45885
published 2025-05-09CVE-2025-45885: PHPGURUKUL Vehicle Parking Management System v1.13 is vulnerable to SQL injection in the /vpms/users/login.php file. Attackers can inject malicious code from…
critical9.8CVSS 3.1
AVNACLPRNUINSUCHIHAH
PHPGURUKUL Vehicle Parking Management System v1.13 is vulnerable to SQL injection in the /vpms/users/login.php file. Attackers can inject malicious code from the parameter 'emailcont' and use it directly in SQL queries.
Affected
3 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| msrc | cbl2_kernel_5.15.182.1-1_on_cbl_mariner_2.0 | — | — |
| msrc | cm1_kernel_5.10.189.1-1_on_cbl_mariner_1.0 | — | — |
| phpgurukul | vehicle_parking_management_system | — | — |