CVE-2026-14735
code-projects Smart Parking System parkings.php sql injection
CVSS Score
7.3
EPSS Score
0.4%
EPSS Percentile
33th
A vulnerability has been found in code-projects Smart Parking System 1.0. The affected element is an unknown function of the file /parkings/parkings.php. Such manipulation of the argument street/city/status leads to sql injection. The attack can be executed remotely. The exploit has been disclosed to the public and may be used.
| CWE | CWE-89 CWE-74 |
| Vendor | code-projects |
| Product | smart parking system |
| Published | Jul 5, 2026 |
| Last Updated | Jul 7, 2026 |
Stay Ahead of the Next One
Get instant alerts for code-projects smart parking system
Be the first to know when new high vulnerabilities affecting code-projects smart parking system are published โ delivered to Slack, Telegram or Discord.
Get Free Alerts โ
Free ยท No credit card ยท 60 sec setup
CVSS v3 Breakdown
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L/E:P/RL:X/RC:R Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality
Integrity
Availability
Affected Versions
code-projects / Smart Parking System
1.0
References
vuldb.com: https://vuldb.com/vuln/376317 vuldb.com: https://vuldb.com/vuln/376317/cti vuldb.com: https://vuldb.com/cve/CVE-2026-14735 vuldb.com: https://vuldb.com/submit/848002 medium.com: https://medium.com/@avdzav10/sql-injection-leading-to-arbitrary-file-read-in-smart-parking-system-php-2cd5b084f9e1 code-projects.org: https://code-projects.org/
Credits
๐ anubhav106 (VulDB User)