GCVE - cpe:2.3:a:code-projects:online_car_rental

Approved changes feed: RSS · Atom

cpe:2.3:a:code-projects:online_car_rental_system:1.0:*:*:*:*:*:*:*

part: a version: 1.0 update: *

Vendor	Code Projects (`a64d3912-7513-5560-97cf-6216c4da48a5`)
Product	Online Car Rental System (`158aab64-afce-52e6-ad4b-51e86aec73f5`)
Edition	*
Language	*
Software edition	*
Target software	*
Target hardware	*
Other	*
Notes	Imported from NVD CPE 2.0 feed

PURL mappings

PURL	Source	Last updated
No PURL mappings for this CPE yet.

Identifier	cpeApplicability	Submitted	db.gcve.eu details	Rationale
`CVE:CVE-2024-57488`	vulnerable	2026-06-03 14:57:50.619096	Details available Code-Projects Online Car Rental System 1.0 is vulnerable to Cross Site Scripting (XSS) via the vehicalorcview parameter in /admin/edit-vehicle.php. Published: 2025-01-13T00:00:00.000Z Updated: 2025-01-13T19:36:46.132Z Open on db.gcve.eu Reference links https://code-projects.org/online-car-rental-using-php-source-code/ https://github.com/aaryan-11-x/CVE-2024-57487-and-CVE-2024-57488	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2024-57487`	vulnerable	2026-06-03 14:57:50.618695	Details available In Code-Projects Online Car Rental System 1.0, the file upload feature does not validate file extensions or MIME types allowing an attacker to upload a PHP shell without any restrictions and execute commands on the server. Published: 2025-01-13T00:00:00.000Z Updated: 2025-01-13T19:39:00.239Z Open on db.gcve.eu Reference links https://code-projects.org/online-car-rental-using-php-source-code/ https://github.com/aaryan-11-x/CVE-2024-57487-and-CVE-2024-57488	Imported from gcve-enriched-dumps CVE data

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.