Phpgurukul Vehicle Parking Management System vulnerabilities

CVE-2025-7521 [MEDIUM] CWE-74 CVE-2025-7521: A vulnerability, which was classified as critical, was found in PHPGurukul Vehicle Parking Managemen A vulnerability, which was classified as critical, was found in PHPGurukul Vehicle Parking Management System 1.13. Affected is an unknown function of the file /admin/index.php. The manipulation of the argument Username leads to sql injection. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used.

CVE-2025-7522 [MEDIUM] CWE-74 CVE-2025-7522: A vulnerability has been found in PHPGurukul Vehicle Parking Management System 1.13 and classified a A vulnerability has been found in PHPGurukul Vehicle Parking Management System 1.13 and classified as critical. Affected by this vulnerability is an unknown functionality of the file /admin/bwdates-reports-details.php. The manipulation of the argument fromdate/todate leads to sql injection. The attack can be launched remotely. The exploit has been disc

CVE-2025-7520 [MEDIUM] CWE-74 CVE-2025-7520: A vulnerability, which was classified as critical, has been found in PHPGurukul Vehicle Parking Mana A vulnerability, which was classified as critical, has been found in PHPGurukul Vehicle Parking Management System 1.13. This issue affects some unknown processing of the file /admin/manage-category.php. The manipulation of the argument del leads to sql injection. The attack may be initiated remotely. The exploit has been disclosed to the public and may

CVE-2025-7484 [MEDIUM] CWE-74 CVE-2025-7484: A vulnerability classified as critical has been found in PHPGurukul Vehicle Parking Management Syste A vulnerability classified as critical has been found in PHPGurukul Vehicle Parking Management System 1.13. Affected is an unknown function of the file /admin/view-outgoingvehicle-detail.php. The manipulation of the argument viewid leads to sql injection. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may

CVE-2025-7489 [MEDIUM] CWE-74 CVE-2025-7489: A vulnerability was found in PHPGurukul Vehicle Parking Management System 1.13 and classified as cri A vulnerability was found in PHPGurukul Vehicle Parking Management System 1.13 and classified as critical. This issue affects some unknown processing of the file /admin/search-vehicle.php. The manipulation of the argument searchdata leads to sql injection. The attack may be initiated remotely. The exploit has been disclosed to the public and may be use

CVE-2025-7482 [MEDIUM] CWE-74 CVE-2025-7482: A vulnerability was found in PHPGurukul Vehicle Parking Management System 1.13. It has been declared A vulnerability was found in PHPGurukul Vehicle Parking Management System 1.13. It has been declared as critical. This vulnerability affects unknown code of the file /users/print.php. The manipulation of the argument vid leads to sql injection. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used.

CVE-2025-7483 [MEDIUM] CWE-74 CVE-2025-7483: A vulnerability was found in PHPGurukul Vehicle Parking Management System 1.13. It has been rated as A vulnerability was found in PHPGurukul Vehicle Parking Management System 1.13. It has been rated as critical. This issue affects some unknown processing of the file /users/forgot-password.php. The manipulation of the argument email leads to sql injection. The attack may be initiated remotely. The exploit has been disclosed to the public and may be use

CVE-2025-7481 [MEDIUM] CWE-74 CVE-2025-7481: A vulnerability was found in PHPGurukul Vehicle Parking Management System 1.13. It has been classifi A vulnerability was found in PHPGurukul Vehicle Parking Management System 1.13. It has been classified as critical. This affects an unknown part of the file /users/profile.php. The manipulation of the argument firstname leads to sql injection. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used.

CVE-2025-7490 [MEDIUM] CWE-74 CVE-2025-7490: A vulnerability was found in PHPGurukul Vehicle Parking Management System 1.13. It has been classifi A vulnerability was found in PHPGurukul Vehicle Parking Management System 1.13. It has been classified as critical. Affected is an unknown function of the file /admin/reg-users.php. The manipulation of the argument del leads to sql injection. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used.

CVE-2025-7480 [MEDIUM] CWE-74 CVE-2025-7480: A vulnerability was found in PHPGurukul Vehicle Parking Management System 1.13 and classified as cri A vulnerability was found in PHPGurukul Vehicle Parking Management System 1.13 and classified as critical. Affected by this issue is some unknown functionality of the file /users/signup.php. The manipulation of the argument email leads to sql injection. The attack may be launched remotely. The exploit has been disclosed to the public and may be used.

CVE-2025-7479 [MEDIUM] CWE-74 CVE-2025-7479: A vulnerability has been found in PHPGurukul Vehicle Parking Management System 1.13 and classified a A vulnerability has been found in PHPGurukul Vehicle Parking Management System 1.13 and classified as critical. Affected by this vulnerability is an unknown functionality of the file /users/view--detail.php. The manipulation of the argument viewid leads to sql injection. The attack can be launched remotely. The exploit has been disclosed to the public

CVE-2025-7491 [MEDIUM] CWE-74 CVE-2025-7491: A vulnerability was found in PHPGurukul Vehicle Parking Management System 1.13. It has been declared A vulnerability was found in PHPGurukul Vehicle Parking Management System 1.13. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /admin/manage-outgoingvehicle.php. The manipulation of the argument del leads to sql injection. The attack can be launched remotely. The exploit has been disclosed to th

CVE-2025-7492 [MEDIUM] CWE-74 CVE-2025-7492: A vulnerability was found in PHPGurukul Vehicle Parking Management System 1.13. It has been rated as A vulnerability was found in PHPGurukul Vehicle Parking Management System 1.13. It has been rated as critical. Affected by this issue is some unknown functionality of the file /admin/manage-incomingvehicle.php. The manipulation of the argument del leads to sql injection. The attack may be launched remotely. The exploit has been disclosed to the public

CVE-2025-4702 [MEDIUM] CWE-74 CVE-2025-4702: A vulnerability, which was classified as critical, was found in PHPGurukul Vehicle Parking Managemen A vulnerability, which was classified as critical, was found in PHPGurukul Vehicle Parking Management System 1.13. Affected is an unknown function of the file /admin/add-category.php. The manipulation of the argument catename leads to sql injection. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be us

CVE-2025-4704 [MEDIUM] CWE-74 CVE-2025-4704: A vulnerability was found in PHPGurukul Vehicle Parking Management System 1.13 and classified as cri A vulnerability was found in PHPGurukul Vehicle Parking Management System 1.13 and classified as critical. Affected by this issue is some unknown functionality of the file /admin/edit-category.php. The manipulation of the argument editid leads to sql injection. The attack may be launched remotely. The exploit has been disclosed to the public and may be

CVE-2025-4703 [MEDIUM] CWE-74 CVE-2025-4703: A vulnerability has been found in PHPGurukul Vehicle Parking Management System 1.13 and classified a A vulnerability has been found in PHPGurukul Vehicle Parking Management System 1.13 and classified as critical. Affected by this vulnerability is an unknown functionality of the file /admin/admin-profile.php. The manipulation of the argument contactnumber leads to sql injection. The attack can be launched remotely. The exploit has been disclosed to the

CVE-2025-4705 [MEDIUM] CWE-74 CVE-2025-4705: A vulnerability was found in PHPGurukul Vehicle Parking Management System 1.13. It has been classifi A vulnerability was found in PHPGurukul Vehicle Parking Management System 1.13. It has been classified as critical. This affects an unknown part of the file /admin/view-incomingvehicle-detail.php. The manipulation of the argument viewid leads to sql injection. It is possible to initiate the attack remotely. The exploit has been disclosed to the public

CVE-2025-45885 [CRITICAL] CWE-89 CVE-2025-45885: PHPGURUKUL Vehicle Parking Management System v1.13 is vulnerable to SQL injection in the /vpms/users PHPGURUKUL Vehicle Parking Management System v1.13 is vulnerable to SQL injection in the /vpms/users/login.php file. Attackers can inject malicious code from the parameter 'emailcont' and use it directly in SQL queries.

CVE-2024-53364 [MEDIUM] CWE-89 CVE-2024-53364: A SQL injection vulnerability was found in PHPGURUKUL Vehicle Parking Management System v1.13 in /us A SQL injection vulnerability was found in PHPGURUKUL Vehicle Parking Management System v1.13 in /users/view-detail.php. This vulnerability affects the viewid parameter, where improper input sanitization allows attackers to inject malicious SQL queries.

CVE-2024-53365 [MEDIUM] CWE-79 CVE-2024-53365: A stored cross-site scripting (XSS) vulnerability was identified in PHPGURUKUL Vehicle Parking Manag A stored cross-site scripting (XSS) vulnerability was identified in PHPGURUKUL Vehicle Parking Management System v1.13 in /users/profile.php. This vulnerability allows authenticated users to inject malicious XSS scripts into the profile name field.