Ummer Mukthar

**Name of the Vulnerable Software and Affected Versions** code-projects Car Rental version 1.0 **Description** A critical issue has been found in the code-projects Car Rental software. The problem affects some unknown functionality of the file add-vehicle.php. The manipulation of the `Upload Image` argument leads to unrestricted upload. This issue can be exploited remotely. **Recommendations** For code-projects Car Rental version 1.0, consider disabling the `Upload Image` functionality in the add-vehicle.php file until a patch is available to prevent unrestricted upload. Restrict access to the add-vehicle.php file to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.