Phpgurukul Car Rental Portal vulnerabilities

CVE-2025-6284 [MEDIUM] CWE-352 CVE-2025-6284: A vulnerability was found in PHPGurukul Car Rental Portal 3.0. It has been declared as problematic. A vulnerability was found in PHPGurukul Car Rental Portal 3.0. It has been declared as problematic. This vulnerability affects unknown code. The manipulation leads to cross-site request forgery. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used.

CVE-2025-4926 [MEDIUM] CWE-284 CVE-2025-4926: A vulnerability was found in PHPGurukul Car Rental Project 1.0 and classified as critical. Affected A vulnerability was found in PHPGurukul Car Rental Project 1.0 and classified as critical. Affected by this issue is some unknown functionality of the file /admin/post-avehical.php. The manipulation of the argument img1/img2/img3/img4/img5 leads to unrestricted upload. The attack may be launched remotely. The exploit has been disclosed to the public an

CVE-2024-10701 [MEDIUM] CWE-79 CVE-2024-10701: A vulnerability was found in PHPGurukul Car Rental Portal 1.0. It has been rated as problematic. Thi A vulnerability was found in PHPGurukul Car Rental Portal 1.0. It has been rated as problematic. This issue affects some unknown processing of the file /search.php. The manipulation of the argument searchdata leads to cross site scripting. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used.

CVE-2021-26809 [CRITICAL] CWE-434 CVE-2021-26809: PHPGurukul Car Rental Project version 2.0 suffers from a remote shell upload vulnerability in change PHPGurukul Car Rental Project version 2.0 suffers from a remote shell upload vulnerability in changeimage1.php.

CVE-2020-5509 [HIGH] CWE-434 CVE-2020-5509: PHPGurukul Car Rental Project v1.0 allows Remote Code Execution via an executable file in an upload PHPGurukul Car Rental Project v1.0 allows Remote Code Execution via an executable file in an upload of a new profile image.