EUVD-2025-21221Severity by source
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Primary rating from NVD · only source for this CVE.
CVSS VectorNVD
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Lifecycle Timeline
6DescriptionCVE.org
A vulnerability classified as critical was found in code-projects Simple Car Rental System 1.0. This vulnerability affects unknown code of the file /admin/approve.php. The manipulation of the argument ID leads to sql injection. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used.
AnalysisAI
CVE-2025-7476 is a critical SQL injection vulnerability in code-projects Simple Car Rental System 1.0 affecting the /admin/approve.php endpoint's ID parameter. An unauthenticated remote attacker can exploit this to execute arbitrary SQL queries, potentially leading to unauthorized data access, modification, or deletion. The vulnerability has been publicly disclosed with exploit code available, elevating real-world risk despite the CVSS 7.3 score suggesting moderate impact.
Technical ContextAI
The vulnerability exists in the Simple Car Rental System 1.0, a web-based vehicle rental management application. The root cause is classified under CWE-74 (Improper Neutralization of Special Elements in Output Used by a Downstream Component), which encompasses SQL injection flaws. Specifically, the /admin/approve.php file fails to properly sanitize or parameterize the 'ID' parameter before incorporating it into SQL queries. This is a classic first-order SQL injection vulnerability where user-supplied input is directly concatenated into SQL statements without escape sequences or prepared statement usage. The affected technology stack likely includes PHP as the backend language (evident from .php file extension) and a relational database (MySQL, PostgreSQL, or similar) commonly used in rental management systems.
RemediationAI
Immediate remediation steps: (1) Apply any available security patches from code-projects (check GitHub repository for version 1.1 or later with SQL injection fixes); (2) If no patch is available, implement input validation by: parameterizing all SQL queries using prepared statements with bound parameters (mysqli_prepare or PDO prepared statements in PHP), implementing whitelist validation on the 'ID' parameter (numeric range check if it should be numeric), and applying strict type-casting (cast $ID to integer if appropriate); (3) Implement Web Application Firewall (WAF) rules to detect/block SQL injection payloads (e.g., common patterns: 'OR 1=1', UNION SELECT, stacked queries); (4) Restrict /admin/approve.php access via network segmentation or IP allowlisting to trusted admin networks; (5) Enable SQL error suppression in production to prevent information leakage, and log all database query errors for monitoring.
More from same product – last 7 days
Authentication bypass in Discuz! X5.0 releases 20260320 through 20260501 allows unauthenticated remote attackers to acce
Authenticated remote code execution in Discuz! X5.0 releases 20260320 through 20260501 allows administrators to chain a
Unauthenticated PHP Object Injection in the Happyforms WordPress plugin (versions <= 1.26.13) allows remote attackers to
Unauthenticated PHP Object Injection in the Broadcast Live Video WordPress plugin (versions prior to 7.1.3) allows remot
Unauthenticated PHP object injection in the WordPress plugin 'Integration for Keap/Infusionsoft and Contact Form 7, WPFo
Share
External POC / Exploit Code
Leaving vuln.today