CVE-2025-8374

Name of the Vulnerable Software and Affected Versions code-projects Vehicle Management version 1.0

Description A critical vulnerability was found in code-projects Vehicle Management version 1.0, affecting unknown code within the /addcompany.php file. Manipulation of the company argument leads to a SQL injection. The attack can be initiated remotely, and the exploit has been publicly disclosed and may be used.

Recommendations code-projects Vehicle Management version 1.0: As a temporary workaround, consider restricting access to the /addcompany.php file until a patch is available.