VYPR

Vehicle Record System

by Phpgurukul

CVEs (14)

  • CVE-2025-5913HigJun 10, 2025
    risk 0.47cvss 7.3epss 0.00

    A vulnerability was found in PHPGurukul Vehicle Record Management System 1.0. It has been rated as critical. This issue affects some unknown processing of the file /admin/search-vehicle.php. The manipulation of the argument searchinputdata leads to sql injection. The attack may…

  • CVE-2025-29641HigMar 21, 2025
    risk 0.47cvss 7.3epss 0.00

    Phpgurukul Vehicle Record Management System v1.0 is vulnerable to SQL Injection in /index.php via the 'searchinputdata' parameter.

  • CVE-2024-46531MedOct 30, 2024
    risk 0.41cvss 6.3epss 0.00

    phpgurukul Vehicle Record Management System v1.0 was discovered to contain a SQL injection vulnerability via the searchinputdata parameter at /index.php.

  • CVE-2024-10331MedOct 24, 2024
    risk 0.41cvss 6.3epss 0.01

    A vulnerability, which was classified as critical, has been found in PHPGurukul Vehicle Record System 1.0. This issue affects some unknown processing of the file /admin/search-vehicle.php. The manipulation of the argument searchinputdata leads to sql injection. The attack may be…

  • CVE-2025-44183MedMay 15, 2025
    risk 0.40cvss 6.1epss 0.00

    Phpgurukul Vehicle Record Management System v1.0 is vulnerable to Cross Site Scripting (XSS) in /admin/profile.php via the name, email, and mobile parameters.

  • CVE-2025-44182MedMay 15, 2025
    risk 0.40cvss 6.1epss 0.00

    Phpgurukul Vehicle Record Management System v1.0 is vulnerable to Cross Site Scripting (XSS) via the vehiclename, modelnumber, regnumber, vehiclesubtype, chasisnum, enginenumber' in the /admin/edit-vehicle.php component. This allows attackers to execute arbitrary code.

  • CVE-2025-44181MedMay 15, 2025
    risk 0.40cvss 6.1epss 0.00

    Phpgurukul Vehicle Record Management System v1.0 is vulnerable to Cross Site Scripting (XSS) in /admin/add-brand.php via the brandname parameter.

  • CVE-2025-44180MedMay 15, 2025
    risk 0.40cvss 6.1epss 0.00

    Phpgurukul Vehicle Record Management System v1.0 is vulnerable to Cross Site Scripting (XSS) in /edit-brand.php?bid={brandId}.

  • CVE-2024-10414LowOct 27, 2024
    risk 0.16cvss 2.4epss 0.00

    A vulnerability, which was classified as problematic, was found in PHPGurukul Vehicle Record System 1.0. This affects an unknown part of the file /admin/edit-brand.php. The manipulation of the argument Brand Name leads to cross site scripting. It is possible to initiate the…

  • CVE-2024-51222Mar 23, 2026
    risk 0.00cvss epss 0.00

    A stored cross-site scripting (XSS) vulnerability in the component /admin/profile.php of Phpgurukul Vehicle Record Management System v1.0 allows attackers to execute arbitrary web scripts or HTML via injecting a crafted payload into the Name parameter.

  • CVE-2024-51226Mar 23, 2026
    risk 0.00cvss epss 0.00

    A stored cross-site scripting (XSS) vulnerability in the component /admin/search-vehicle.php of Phpgurukul Vehicle Record Management System v1.0 allows attackers to execute arbitrary web scripts or HTML via injecting a crafted payload into the Search parameter.

  • CVE-2024-51223Mar 23, 2026
    risk 0.00cvss epss 0.00

    A stored cross-site scripting (XSS) vulnerability in the component /admin/profile.php of Phpgurukul Vehicle Record Management System v1.0 allows attackers to execute arbitrary web scripts or HTML via injecting a crafted payload into the Mobile Number parameter.

  • CVE-2024-51224Mar 23, 2026
    risk 0.00cvss epss 0.00

    Multiple cross-site scripting (XSS) vulnerabilities in the component /admin/edit-vehicle.php of Phpgurukul Vehicle Record Management System v1.0 allows attackers to execute arbitrary web scripts or HTML via injecting a crafted payload into the vehiclename, modelnumber,…

  • CVE-2024-51225Mar 23, 2026
    risk 0.00cvss epss 0.00

    A stored cross-site scripting (XSS) vulnerability in the component /admin/add-brand.php of Phpgurukul Vehicle Record Management System v1.0 allows attackers to execute arbitrary web scripts or HTML via injecting a crafted payload into the brandname parameter.