VYPR

Car Rental Portal

by Phpgurukul

CVEs (5)

  • CVE-2025-50486HigJul 28, 2025
    risk 0.46cvss 7.1epss 0.00

    Improper session invalidation in the component /carrental/update-password.php of PHPGurukul Car Rental Project v3.0 allows attackers to execute a session hijacking attack.

  • CVE-2025-4926MedMay 19, 2025
    risk 0.31cvss 4.7epss 0.00

    A vulnerability was found in PHPGurukul Car Rental Project 1.0 and classified as critical. Affected by this issue is some unknown functionality of the file /admin/post-avehical.php. The manipulation of the argument img1/img2/img3/img4/img5 leads to unrestricted upload. The…

  • CVE-2025-10794MedSep 22, 2025
    risk 0.28cvss 4.3epss 0.00

    A flaw has been found in PHPGurukul Car Rental Project 3.0. Affected by this issue is some unknown functionality of the file /carrental/search.php. Executing manipulation of the argument autofocus can lead to cross site scripting. It is possible to launch the attack remotely.…

  • CVE-2025-6284MedJun 19, 2025
    risk 0.28cvss 4.3epss 0.00

    A vulnerability was found in PHPGurukul Car Rental Portal 3.0. It has been declared as problematic. This vulnerability affects unknown code. The manipulation leads to cross-site request forgery. The attack can be initiated remotely. The exploit has been disclosed to the public…

  • CVE-2024-10701LowNov 2, 2024
    risk 0.23cvss 3.5epss 0.00

    A vulnerability was found in PHPGurukul Car Rental Portal 1.0. It has been rated as problematic. This issue affects some unknown processing of the file /search.php. The manipulation of the argument searchdata leads to cross site scripting. The attack may be initiated remotely.…