CVE-2025-13575 code-projects Blog Site Category blog.php category_exists sql injection

A security vulnerability has been detected in code-projects Blog Site 1.0. Impacted is the function categoryexists of the file /resources/functions/blog.php of the component Category Handler. Such manipulation of the argument name/field leads to sql injection. The attack may be performed from...

CVE-2025-13575 code-projects Blog Site Category blog.php category_exists sql injection

A security vulnerability has been detected in code-projects Blog Site 1.0. Impacted is the function categoryexists of the file /resources/functions/blog.php of the component Category Handler. Such manipulation of the argument name/field leads to sql injection. The attack may be performed from...

CVE-2025-13575

CVE-2025-13575 affects code-projects Blog Site 1.0. The vulnerability is in the function category_exists in /resources/functions/blog.php (Category Handler). The issue arises from manipulation of the argument name/field, enabling SQL injection. The attack can be performed remotely and the exploit...

CVE-2025-13574

A weakness has been identified in code-projects Online Bidding System 1.0. This issue affects the function categoryadd of the file /administrator/addcategory.php. This manipulation of the argument catimage causes unrestricted upload. The attack is possible to be carried out remotely. The exploit...

CVE-2025-13574

The CVE-2025-13574 issue affects Code-Projects Online Bidding System 1.0, specifically the function categoryadd in /administrator/addcategory.php. Manipulating the argument catimage enables unrestricted file uploads, allowing remote exploitation. Public exploits exist according to the description...

CVE-2025-13574 code-projects Online Bidding System addcategory.php categoryadd unrestricted upload

A weakness has been identified in code-projects Online Bidding System 1.0. This issue affects the function categoryadd of the file /administrator/addcategory.php. This manipulation of the argument catimage causes unrestricted upload. The attack is possible to be carried out remotely. The exploit...

CVE-2025-13574 code-projects Online Bidding System addcategory.php categoryadd unrestricted upload

A weakness has been identified in code-projects Online Bidding System 1.0. This issue affects the function categoryadd of the file /administrator/addcategory.php. This manipulation of the argument catimage causes unrestricted upload. The attack is possible to be carried out remotely. The exploit...

PT-2025-47878

A security flaw has been discovered in code-projects Jonnys Liquor 1.0. Affected by this issue is some unknown functionality of the file /detail.php of the component GET Parameter Handler. Performing manipulation of the argument Product results in sql injection. Remote exploitation of the attack ...

Code-Projects Blog Site 授权问题漏洞

Blog Site is a blogging system. Blog Site suffers from an improper authorization vulnerability that originates in the file /admin.php, which can be exploited by an attacker to compromise confidentiality, integrity, and availability...

PT-2025-47870

A vulnerability was detected in code-projects Blog Site 1.0. The affected element is an unknown function of the file /admin.php. Performing manipulation results in improper authorization. It is possible to initiate the attack remotely. The exploit is now public and may be used. Multiple endpoints...

Code-Projects Question Paper Generator SQL注入漏洞

Code-Projects Question Paper Generator is an open source question paper generation software from Code-Projects. Code-Projects Question Paper Generator version 1.0 suffers from a SQL injection vulnerability that stems from incorrect manipulation of the parameter Fname in the file /signupscript.php...

Code-Projects Online Bidding System 代码问题漏洞

Code-Projects Online Bidding System is a Code-Projects open source online bidding system. Code-Projects Online Bidding System version 1.0 has a code issue vulnerability, the vulnerability stems from the file /administrator/addcategory.php function categoryadd to the parameter catimage incorrect...

PT-2025-47882

Name of the Vulnerable Software and Affected Versions code-projects COVID Tracking System version 1.0 Description A flaw exists in the processing of the /login.php file within the software. Manipulation of the code argument can lead to SQL injection. This issue is remotely exploitable and an...

Code-Projects Jonnys Liquor SQL注入漏洞

Code-Projects Jonnys Liquor is a content and management system from Code-Projects open source. A SQL injection vulnerability exists in Code-Projects Jonnys Liquor version 1.0, which stems from incorrect manipulation of the parameter Product in the file /detail.php, which could lead to SQL injecti...

Code-Projects COVID Tracking System SQL注入漏洞

Code-Projects COVID Tracking System is a new Crown Pneumonia tracking system from Code-Projects open source. A SQL injection vulnerability exists in Code-Projects COVID Tracking System version 1.0, which stems from incorrect manipulation of the parameter code in the file /login.php, which could...

CVE-2025-13571 code-projects Simple Food Ordering System listorder.php sql injection

A vulnerability was determined in code-projects Simple Food Ordering System 1.0. Affected by this issue is some unknown functionality of the file /listorder.php. Executing manipulation of the argument ID can lead to sql injection. The attack may be launched remotely. The exploit has been publicly...

CVE-2025-13571

CVE-2025-13571 affects Code-Projects Simple Food Ordering System 1.0, with a SQL injection vulnerability in /listorder.php triggered by manipulating the ID parameter. The issue is remotely exploitable, and public exploit information is cited in the initial data. Connected sources corroborate the ...

Code-Projects Simple Food Ordering System SQL注入漏洞

Code-Projects Simple Food Ordering System is a Code-Projects open source simple food ordering system. A SQL injection vulnerability exists in Code-Projects Simple Food Ordering System version 1.0, which stems from the incorrect manipulation of the parameter ID by an unknown function in the file...

cve

Here are some vulnerabilities related to variou...

CVE-2025-13449 code-projects Online Shop Project login.php sql injection

A vulnerability was found in code-projects Online Shop Project 1.0. This issue affects some unknown processing of the file /login.php. The manipulation of the argument Password results in sql injection. The attack may be performed from remote. The exploit has been made public and could be used...