{"dataType": "CVE_RECORD", "cveMetadata": {"state": "PUBLISHED", "cveId": "CVE-2026-39110", "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "assignerShortName": "mitre", "dateUpdated": "2026-04-20T18:34:55.729Z", "dateReserved": "2026-04-06T00:00:00.000Z", "datePublished": "2026-04-20T00:00:00.000Z"}, "containers": {"cna": {"providerMetadata": {"orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre", "dateUpdated": "2026-04-20T17:19:30.708Z"}, "descriptions": [{"lang": "en", "value": "SQL Injection vulnerability in Apartment Visitors Management System Apartment Visitors Management System V1.1 in the contactno parameter of the forgot password page (forgot-password.php). This allows an unauthenticated attacker to manipulate backend SQL queries during authentication and retrieve sensitive database contents."}], "affected": [{"vendor": "n/a", "product": "n/a", "versions": [{"version": "n/a", "status": "affected"}]}], "references": [{"url": "https://phpgurukul.com/apartment-visitors-management-system-using-php-and-mysql/"}, {"url": "https://phpgurukul.com/?sdm_process_download=1&download_id=21524"}, {"url": "https://github.com/efekaanakkar/Apartment-Visitors-Management-System-CVEs/"}], "problemTypes": [{"descriptions": [{"type": "text", "lang": "en", "description": "n/a"}]}]}, "adp": [{"problemTypes": [{"descriptions": [{"type": "CWE", "cweId": "CWE-89", "lang": "en", "description": "CWE-89 Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')"}]}], "metrics": [{"cvssV3_1": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 8.2, "attackVector": "NETWORK", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:N", "integrityImpact": "LOW", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "NONE", "privilegesRequired": "NONE", "confidentialityImpact": "HIGH"}}, {"other": {"type": "ssvc", "content": {"timestamp": "2026-04-20T18:34:20.979833Z", "id": "CVE-2026-39110", "options": [{"Exploitation": "poc"}, {"Automatable": "yes"}, {"Technical Impact": "partial"}], "role": "CISA Coordinator", "version": "2.0.3"}}}], "title": "CISA ADP Vulnrichment", "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2026-04-20T18:34:55.729Z"}}]}, "dataVersion": "5.2"}

{"dataType": "CVE_RECORD", "containers": {"adp": [{"title": "CISA ADP Vulnrichment", "metrics": [{"cvssV3_1": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 8.2, "attackVector": "NETWORK", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:N", "integrityImpact": "LOW", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "NONE", "privilegesRequired": "NONE", "confidentialityImpact": "HIGH"}}, {"other": {"type": "ssvc", "content": {"id": "CVE-2026-39110", "role": "CISA Coordinator", "options": [{"Exploitation": "poc"}, {"Automatable": "yes"}, {"Technical Impact": "partial"}], "version": "2.0.3", "timestamp": "2026-04-20T18:34:20.979833Z"}}}], "problemTypes": [{"descriptions": [{"lang": "en", "type": "CWE", "cweId": "CWE-89", "description": "CWE-89 Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')"}]}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2026-04-20T18:33:00.625Z"}}], "cna": {"affected": [{"vendor": "n/a", "product": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "references": [{"url": "https://phpgurukul.com/apartment-visitors-management-system-using-php-and-mysql/"}, {"url": "https://phpgurukul.com/?sdm_process_download=1&download_id=21524"}, {"url": "https://github.com/efekaanakkar/Apartment-Visitors-Management-System-CVEs/"}], "descriptions": [{"lang": "en", "value": "SQL Injection vulnerability in Apartment Visitors Management System Apartment Visitors Management System V1.1 in the contactno parameter of the forgot password page (forgot-password.php). This allows an unauthenticated attacker to manipulate backend SQL queries during authentication and retrieve sensitive database contents."}], "problemTypes": [{"descriptions": [{"lang": "en", "type": "text", "description": "n/a"}]}], "providerMetadata": {"orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre", "dateUpdated": "2026-04-20T17:19:30.708Z"}}}, "cveMetadata": {"cveId": "CVE-2026-39110", "state": "PUBLISHED", "dateUpdated": "2026-04-20T18:34:55.729Z", "dateReserved": "2026-04-06T00:00:00.000Z", "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "datePublished": "2026-04-20T00:00:00.000Z", "assignerShortName": "mitre"}, "dataVersion": "5.2"}

{"cveTags": [], "descriptions": [{"lang": "en", "value": "SQL Injection vulnerability in Apartment Visitors Management System Apartment Visitors Management System V1.1 in the contactno parameter of the forgot password page (forgot-password.php). This allows an unauthenticated attacker to manipulate backend SQL queries during authentication and retrieve sensitive database contents."}], "id": "CVE-2026-39110", "lastModified": "2026-04-20T19:16:10.893", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "NONE", "baseScore": 8.2, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "LOW", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:N", "version": "3.1"}, "exploitabilityScore": 3.9, "impactScore": 4.2, "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "type": "Secondary"}]}, "published": "2026-04-20T18:16:27.167", "references": [{"source": "cve@mitre.org", "url": "https://github.com/efekaanakkar/Apartment-Visitors-Management-System-CVEs/"}, {"source": "cve@mitre.org", "url": "https://phpgurukul.com/?sdm_process_download=1&download_id=21524"}, {"source": "cve@mitre.org", "url": "https://phpgurukul.com/apartment-visitors-management-system-using-php-and-mysql/"}], "sourceIdentifier": "cve@mitre.org", "vulnStatus": "Deferred", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-89"}], "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "type": "Secondary"}]}

{}

{"affected": [{"configurations": [{"platform": null, "status": "affected", "versions": {"scheme": "generic", "value": "1.1"}}], "enrichment": {"confidence": 100.0, "confidence_source": "manual", "scores": [{"score": 100.0, "source": "manual"}]}, "original": {"product": "n/a", "source": "cna", "vendor": "n/a"}, "product": "apartment_visitors_management_system", "vendor": "phpgurukul"}], "analysis": {"en": {"generated_at": "2026-04-20T20:44:18.191695+00:00", "value": {"mitigation_remediation": ["Apply any vendor patch or update that addresses the SQL injection in the forgot-password page", "Sanitize the contactno input and use prepared statements or parameterized queries to eliminate unsanitized SQL concatenation", "Implement a web application firewall or input validation rule that blocks suspicious characters in the contactno field"], "summary": {"action": "Patch Immediately", "impact": "Unauthorized Data Access"}, "threat_synthesis": {"affected_systems": "The affected application is the Apartment Visitors Management System version 1.1. No other vendors or products are explicitly mentioned, so this is the only known vulnerable instance.", "description_and_impact": "This vulnerability is a classic SQL injection flaw in the contactno parameter of the forgot-password page. It allows an unauthenticated attacker to manipulate the SQL query used for authentication and obtain sensitive information from the underlying database. The weakness aligns with CWE-89, where user input is directly concatenated into an SQL statement without proper sanitization.", "risk_and_exploitability": "The attack vector is inferred to be a web application interface that accepts the contactno field. Since the flaw permits unauthenticated exploitation and can reveal database contents, the risk is high. The CVSS score is 8.2, and EPSS data is not available, and the vulnerability is not listed in the KEV catalog. The lack of publicly disclosed exploits in the KEV table does not diminish the severity but indicates that it has not yet been widely exploited."}}}}, "created": "2026-04-20T18:45:14.230099+00:00", "title": "Unauthenticated SQL Injection in Forgot Password Page of Apartment Visitors Management System", "updated": "2026-04-27T20:21:16.209489+00:00", "vendors": ["phpgurukul", "phpgurukul$PRODUCT$apartment_visitors_management_system"]}