cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,exploited_date,poc,trended,trended_no_1,trended_no_1_date,published,trended_score
CVE-2021-37806,https://securityvulnerability.io/vulnerability/CVE-2021-37806,SQL Injection Vulnerability in Vehicle Parking Management System by PHP Gurukul,"The Vehicle Parking Management System (version 1.0) by PHP Gurukul is susceptible to an SQL Injection flaw that allows attackers to exploit time-based SQL injection on various endpoints. By leveraging the SLEEP(N) function, an attacker can manipulate the editid, viewid, and catename parameters to cause a delay in the server's response, which can further facilitate the extraction of sensitive data from the database. Tools such as sqlmap can be utilized for exploiting this vulnerability, raising concerns over potential data breaches if not promptly addressed.",PHPgurukul,Vehicle Parking Management System,5.9,MEDIUM,0.011420000344514847,false,,false,false,false,,,false,false,,2021-10-27T16:01:42.000Z,0
CVE-2021-37805,https://securityvulnerability.io/vulnerability/CVE-2021-37805,Stored Cross-Site Scripting Vulnerability in Sourcecodeste Vehicle Parking Management System,"A Stored Cross-Site Scripting (XSS) vulnerability exists in Sourcecodeste's Vehicle Parking Management System version 1.0, which can be exploited via the add-vehicle.php endpoint. This security flaw allows malicious users to inject scripts into web pages viewed by other users, potentially leading to unauthorized actions and data theft.",PHPgurukul,Vehicle Parking Management System,5.4,MEDIUM,0.0005600000149570405,false,,false,false,false,,,false,false,,2021-10-27T15:52:49.000Z,0
CVE-2021-27822,https://securityvulnerability.io/vulnerability/CVE-2021-27822,Persistent Cross Site Scripting in Vehicle Parking Management System by Vehicle Parking,"A persistent cross site scripting vulnerability exists in the Add Categories module of the Vehicle Parking Management System version 1.0. This weakness allows attackers to inject malicious scripts via a specially crafted payload placed in the Category field. If exploited, this could lead to the execution of arbitrary web scripts or HTML, compromising the integrity of the application and endangering user data.",PHPgurukul,Vehicle Parking Management System,4.8,MEDIUM,0.0007800000021234155,false,,false,false,false,,,false,false,,2021-08-19T13:58:57.000Z,0
CVE-2020-23936,https://securityvulnerability.io/vulnerability/CVE-2020-23936,Authentication Bypass Vulnerability in PHPGurukul Vehicle Parking Management System,"The PHPGurukul Vehicle Parking Management System version 1.0 is susceptible to an authentication bypass, allowing unauthorized access. This vulnerability can be exploited by an attacker who uses a specially crafted username and password combination to gain access to the system without proper authorization.",PHPgurukul,Vehicle Parking Management System,9.8,CRITICAL,0.0029700000304728746,false,,false,false,false,,,false,false,,2020-08-20T14:01:37.000Z,0