Security Advisory

CVE-2026-6148

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2026-04-13 01:30:14

Last updated 2026-04-13 01:30:14

Assigner VulDB

State PUBLISHED

Description

A vulnerability was detected in code-projects Vehicle Showroom Management System 1.0. Affected by this vulnerability is an unknown functionality of the file /util/MonthTotalReportUpdateFunction.php. Performing a manipulation of the argument BRANCH_ID results in sql injection. The attack is possible to be carried out remotely. The exploit is now public and may be used.

← Browse all CVEs View on cve.org ↗