CVE-2026-9551 - Vulnerability Details

- Das Parking Management System 停车场管理系统 API Endpoint ExportParkingRecords xp_cmdshell sql injection

Description

A vulnerability was identified in Das Parking Management System 停车场管理系统 6.2.0. This affects the function xp_cmdshell of the file ParkingRecord/ExportParkingRecords of the component API Endpoint. The manipulation of the argument Value leads to sql injection. It is possible to initiate the attack remotely. The exploit is publicly available and might be used. The vendor was contacted early about this disclosure but did not respond in any way.

Published: 2026-05-26

Score: 6.9 Medium

EPSS: < 1% Very Low

KEV: No

Impact:

Action:

Analysis

Impact

The vulnerability resides in the ExportParkingRecords API endpoint of Das Parking Management System 6.2.0. By manipulating the Value argument, an attacker can inject arbitrary SQL statements. The injected payload is passed to the Microsoft SQL Server stored procedure xp_cmdshell, which, if executed, would run the supplied string as an operating‑system command. This behavior is inferred from the function name used; the description does not explicitly confirm command execution, but the presence of xp_cmdshell strongly implies that successful exploitation could lead to OS‑level code execution.

Affected Systems

The only documented vulnerable release is Das Parking Management System 6.2.0. No information is available about whether earlier or later versions are affected, so administrators should verify the exact version of their deployment.

Risk and Exploitability

The CVSS score of 6.9 indicates a moderate severity. EPSS data is unavailable, and the vulnerability is not listed in the CISA KEV catalog. The advisory states that a public exploit is available and that the attack can be launched remotely from outside the network, indicating a realistic risk. No patch has been issued by the vendor at this time, making timely mitigation essential.

Default status is the baseline for the product, each version can override it (e.g. patched versions marked unaffected).

Vendor Product Default status Versions

Das

Parking Management System 停车场管理系统

affected

Version	Status	Constraints
`6.2.0`	affected	—

No data.

Vendor Product Confidence Versions

Das

Parking Management System

95%

Version	Status	Scheme	Platform
`6.2.0`	affected	semver	—

Found an issue or want to improve our Enrichment? You can suggest it directly by opening an issue on our dedicated GitHub repository .

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

Restrict or disable the xp_cmdshell stored procedure on the database server to prevent arbitrary OS command execution
Refactor the ExportParkingRecords endpoint to use parameterized queries and enforce strict validation of the Value input to eliminate injection vectors
Constrain access to the ExportParkingRecords API by implementing firewall rules, IP whitelisting, or requiring VPN connections to reduce exposure to remote attackers

Generated by OpenCVE AI on May 26, 2026 at 17:50 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

Attack Vector Network

Attack Complexity Low

Privileges Required None

Attack Requirements None

User Interaction None

Vulnerable System Confidentiality Impact Low

Vulnerable System Integrity Impact Low

Vulnerable System Availability Impact Low

Subsequent System Confidentiality Impact None

Subsequent System Integrity Impact None

Subsequent System Availability Impact None

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact Low

Integrity Impact Low

Availability Impact Low

User Interaction None

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact Low

Integrity Impact Low

Availability Impact Low

User Interaction None

Access Vector Network

Access Complexity Low

Authentication None

Confidentiality Impact Partial

Integrity Impact Partial

Availability Impact Partial

This CVE is not in the KEV list.

The EPSS score is 0.00318.

Exploitation poc

Automatable yes

Technical Impact partial

References

Link	Providers
https://ucn9h68n9289.feishu.cn/wiki/XW9QwcTjCixlLiklQfBcJCcYn0e?from=from_copylink
https://vuldb.com/submit/815456
https://vuldb.com/vuln/365610
https://vuldb.com/vuln/365610/cti

History

Tue, 26 May 2026 18:15:00 +0000

Type	Values Removed	Values Added
First Time appeared		Das parking Management System
Vendors & Products		Das parking Management System

Tue, 26 May 2026 16:30:00 +0000

Type	Values Removed	Values Added
Metrics		ssvc `{'options': {'Automatable': 'yes', 'Exploitation': 'poc', 'Technical Impact': 'partial'}, 'version': '2.0.3'}`

Tue, 26 May 2026 14:30:00 +0000

Type	Values Removed	Values Added
Description		A vulnerability was identified in Das Parking Management System 停车场管理系统 6.2.0. This affects the function xp_cmdshell of the file ParkingRecord/ExportParkingRecords of the component API Endpoint. The manipulation of the argument Value leads to sql injection. It is possible to initiate the attack remotely. The exploit is publicly available and might be used. The vendor was contacted early about this disclosure but did not respond in any way.
Title		Das Parking Management System 停车场管理系统 API Endpoint ExportParkingRecords xp_cmdshell sql injection
First Time appeared		Das Das parking Management System
Weaknesses		CWE-74 CWE-89
CPEs		cpe:2.3:a:das:parking_management_system_::::::::
Vendors & Products		Das Das parking Management System
References		https://ucn9h68n9289.feishu.cn/wiki/XW9QwcTjCixlLiklQfBcJCcYn0e?from=from_copylink https://vuldb.com/submit/815456 https://vuldb.com/vuln/365610 https://vuldb.com/vuln/365610/cti
Metrics		cvssV2_0 `{'score': 7.5, 'vector': 'AV:N/AC:L/Au:N/C:P/I:P/A:P/E:POC/RL:ND/RC:UR'}` cvssV3_0 `{'score': 7.3, 'vector': 'CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L/E:P/RL:X/RC:R'}` cvssV3_1 `{'score': 7.3, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L/E:P/RL:X/RC:R'}` cvssV4_0 `{'score': 6.9, 'vector': 'CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P'}`

Subscriptions

Das Parking Management System Parking Management System

MITRE

Status: PUBLISHED

Assigner: VulDB

Published: 2026-05-26T13:45:36.916Z

Updated: 2026-05-26T15:21:56.234Z

Reserved: 2026-05-26T07:18:46.932Z

Link: CVE-2026-9551

Vulnrichment

Updated: 2026-05-26T15:21:49.636Z

NVD

Status : Deferred

Published: 2026-05-26T15:17:01.147

Modified: 2026-05-26T19:47:48.987

Link: CVE-2026-9551

Redhat

No data.

OpenCVE Enrichment

Updated: 2026-05-26T18:00:14Z

Weaknesses

CWE-74
Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection')
CWE-89
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')

Impact

Affected Systems

Risk and Exploitability

Tracking

Attack Vector Network

Attack Complexity Low

Privileges Required None

Attack Requirements None

User Interaction None

Vulnerable System Confidentiality Impact Low

Vulnerable System Integrity Impact Low

Vulnerable System Availability Impact Low

Subsequent System Confidentiality Impact None

Subsequent System Integrity Impact None

Subsequent System Availability Impact None

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact Low

Integrity Impact Low

Availability Impact Low

User Interaction None

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact Low

Integrity Impact Low

Availability Impact Low

User Interaction None

Access Vector Network

Access Complexity Low

Authentication None

Confidentiality Impact Partial

Integrity Impact Partial

Availability Impact Partial

Exploitation poc

Automatable yes

Technical Impact partial

Subscriptions

JSON object

JSON object

JSON object

JSON object

JSON object