Lucene search
K

92 matches found

Vulnrichment
Vulnrichment
added 2025/07/08 1:32 p.m.6 views

CVE-2025-7180 code-projects Staff Audit System login.php sql injection

A vulnerability, which was classified as critical, has been found in code-projects Staff Audit System 1.0. This issue affects some unknown processing of the file /login.php. The manipulation of the argument User leads to sql injection. The attack may be initiated remotely. The exploit has been...

7.5CVSS7.6AI score0.00478EPSS
Exploits1References5
Cvelist
Cvelist
added 2025/07/08 1:32 p.m.10 views

CVE-2025-7180 code-projects Staff Audit System login.php sql injection

A vulnerability, which was classified as critical, has been found in code-projects Staff Audit System 1.0. This issue affects some unknown processing of the file /login.php. The manipulation of the argument User leads to sql injection. The attack may be initiated remotely. The exploit has been...

7.5CVSS0.00478EPSS
Exploits1References5
CVE
CVE
added 2025/07/08 1:32 p.m.22 views

CVE-2025-7180

CVE-2025-7180 affects code-projects Staff Audit System 1.0. The vulnerability is in the processing of /login.php, where manipulating the User argument enables SQL injection. This can be exploited remotely and, per sources, the exploit has been disclosed publicly. Multiple sources rate the impact ...

9.8CVSS7.5AI score0.00478EPSS
Exploits1References5Affected Software1
CNNVD
CNNVD
added 2025/07/08 12:0 a.m.4 views

Code-Projects Staff Audit System 注入漏洞

Code-Projects Staff Audit System is a Code-Projects open source staff audit system. Code-Projects Staff Audit System version 1.0 suffers from an injection vulnerability that stems from improper manipulation of the parameter User in the file /login.php, which can lead to SQL injection attacks...

9.8CVSS7.8AI score0.00478EPSS
Exploits1References6
CNNVD
CNNVD
added 2025/07/08 12:0 a.m.6 views

Code-Projects Staff Audit System 安全漏洞

Code-Projects Staff Audit System is an open source staff audit system from Code-Projects. A security vulnerability exists in Code-Projects Staff Audit System version 1.0, which stems from improper manipulation of the parameter uploadedfile in the file /test.php, which could lead to arbitrary file...

9.8CVSS6.5AI score0.00396EPSS
Exploits1References6
Positive Technologies
Positive Technologies
added 2025/07/08 12:0 a.m.7 views

PT-2025-28457 · Code Projects · Staff Audit System

Name of the Vulnerable Software and Affected Versions: code-projects Staff Audit System version 1.0 Description: A critical issue has been found in the Staff Audit System, affecting the processing of the file /login.php. The manipulation of the User argument leads to SQL injection. The attack can...

9.8CVSS7.6AI score0.00478EPSS
Exploits1References7
Positive Technologies
Positive Technologies
added 2025/07/08 12:0 a.m.10 views

PT-2025-28462 · Unknown · Code-Projects Staff Audit System

Name of the Vulnerable Software and Affected Versions: code-projects Staff Audit System version 1.0 Description: A critical issue was found in the code-projects Staff Audit System. The problem is related to an unknown function of the file /test.php, where the manipulation of the uploadedfile...

9.8CVSS6.2AI score0.00396EPSS
Exploits1References7
CNVD
CNVD
added 2025/07/04 12:0 a.m.4 views

Staff Audit System /search_index.php File SQL Injection Vulnerability

Staff Audit System is an employee audit system. Staff Audit System suffers from a SQL injection vulnerability that originates from the lack of validation of externally entered SQL statements in the parameter Search in the file /searchindex.php. An attacker can exploit this vulnerability to execut...

8.8CVSS8.3AI score0.00318EPSS
Exploits1References1
CNVD
CNVD
added 2025/07/04 12:0 a.m.5 views

Staff Audit System /update_index.php File SQL Injection Vulnerability

Staff Audit System is an employee audit system. Staff Audit System suffers from a SQL injection vulnerability that originates from the lack of validation of externally entered SQL statements in the parameter updateid in the file /updateindex.php. An attacker can exploit this vulnerability to...

6.5CVSS8.3AI score0.00252EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/07/02 3:12 a.m.9 views

CVE-2025-6883

A vulnerability classified as critical was found in code-projects Staff Audit System 1.0. This vulnerability affects unknown code of the file /updateindex.php. The manipulation of the argument updateid leads to sql injection. The attack can be initiated remotely. The exploit has been disclosed to...

6.5CVSS7.9AI score0.00252EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/07/02 3:12 a.m.8 views

CVE-2025-6884

A vulnerability, which was classified as critical, has been found in code-projects Staff Audit System 1.0. This issue affects some unknown processing of the file /searchindex.php. The manipulation of the argument Search leads to sql injection. The attack may be initiated remotely. The exploit has...

8.8CVSS7.7AI score0.00318EPSS
Exploits1References1
CNVD
CNVD
added 2025/07/02 12:0 a.m.2 views

Arbitrary File Read Vulnerability in Privileged Account and Operation and Maintenance Audit System of Sanwei Xinan Technology Co.

Privileged Account and Operation and Maintenance Audit System focuses on the full life cycle management and operation behavior monitoring of high-privileged accounts. The product prevents the risk of unauthorized access by centralizing the control of privileged accounts and implementing mechanism...

6.9AI score
Exploits0
OSV
OSV
added 2025/06/30 3:15 a.m.7 views

CVE-2025-6883

A vulnerability classified as critical was found in code-projects Staff Audit System 1.0. This vulnerability affects unknown code of the file /updateindex.php. The manipulation of the argument updateid leads to sql injection. The attack can be initiated remotely. The exploit has been disclosed to...

5.3CVSS5.8AI score0.00252EPSS
Exploits1References5
NVD
NVD
added 2025/06/30 3:15 a.m.10 views

CVE-2025-6884

A vulnerability, which was classified as critical, has been found in code-projects Staff Audit System 1.0. This issue affects some unknown processing of the file /searchindex.php. The manipulation of the argument Search leads to sql injection. The attack may be initiated remotely. The exploit has...

8.8CVSS0.00318EPSS
Exploits1References5
NVD
NVD
added 2025/06/30 3:15 a.m.8 views

CVE-2025-6883

A vulnerability classified as critical was found in code-projects Staff Audit System 1.0. This vulnerability affects unknown code of the file /updateindex.php. The manipulation of the argument updateid leads to sql injection. The attack can be initiated remotely. The exploit has been disclosed to...

6.5CVSS0.00252EPSS
Exploits1References5
OSV
OSV
added 2025/06/30 3:15 a.m.7 views

CVE-2025-6884

A vulnerability, which was classified as critical, has been found in code-projects Staff Audit System 1.0. This issue affects some unknown processing of the file /searchindex.php. The manipulation of the argument Search leads to sql injection. The attack may be initiated remotely. The exploit has...

8.8CVSS5.8AI score0.00318EPSS
Exploits1References5
CVE
CVE
added 2025/06/30 3:2 a.m.26 views

CVE-2025-6884

CVE-2025-6884 affects code-projects Staff Audit System 1.0. The vulnerability lies in the /search_index.php file, where unvalidated input in the Search parameter enables SQL injection. Reported as remote and exploitable, with public disclosure noted in multiple sources; impact is data confidentia...

8.8CVSS7.6AI score0.00318EPSS
Exploits1References5Affected Software1
Cvelist
Cvelist
added 2025/06/30 3:2 a.m.9 views

CVE-2025-6884 code-projects Staff Audit System search_index.php sql injection

A vulnerability, which was classified as critical, has been found in code-projects Staff Audit System 1.0. This issue affects some unknown processing of the file /searchindex.php. The manipulation of the argument Search leads to sql injection. The attack may be initiated remotely. The exploit has...

6.5CVSS0.00318EPSS
Exploits1References5
Vulnrichment
Vulnrichment
added 2025/06/30 3:2 a.m.3 views

CVE-2025-6884 code-projects Staff Audit System search_index.php sql injection

A vulnerability, which was classified as critical, has been found in code-projects Staff Audit System 1.0. This issue affects some unknown processing of the file /searchindex.php. The manipulation of the argument Search leads to sql injection. The attack may be initiated remotely. The exploit has...

6.5CVSS7.6AI score0.00318EPSS
Exploits1References5
CVE
CVE
added 2025/06/30 2:32 a.m.23 views

CVE-2025-6883

Staff Audit System 1.0 contains a SQL injection vulnerability in /update_index.php via the updateid parameter. Root cause: unsanitized SQL statements from externally provided updateid. Impact: remote attacker can execute arbitrary SQL, potentially stealing data. Exploitation is publicly disclosed...

6.5CVSS7.8AI score0.00252EPSS
Exploits1References5Affected Software1
Rows per page
Query Builder