CVE-2025-12283 code-projects Client Details System authorization

A security flaw has been discovered in code-projects Client Details System 1.0. The impacted element is an unknown function. The manipulation results in authorization bypass. The attack can be launched remotely. The exploit has been released to the public and may be exploited...

CVE-2025-12283

CVE-2025-12283 affects code-projects Client Details System 1.0. The vulnerability is an authorization bypass via an unknown function, exploitable remotely, with an exploit publicly released. Connected sources confirm the same description across CNVD, RH, CNNVD/CVELIST variants. No specific affect...

CVE-2025-12282 code-projects Client Details System manage-users.php cross site scripting

A vulnerability was identified in code-projects Client Details System 1.0. The affected element is an unknown function of the file /admin/manage-users.php. The manipulation leads to cross site scripting. The attack can be initiated remotely. The exploit is publicly available and might be used...

CVE-2025-12282 code-projects Client Details System manage-users.php cross site scripting

A vulnerability was identified in code-projects Client Details System 1.0. The affected element is an unknown function of the file /admin/manage-users.php. The manipulation leads to cross site scripting. The attack can be initiated remotely. The exploit is publicly available and might be used...

CVE-2025-12282

The CVE-2025-12282 entry concerns code-projects Client Details System 1.0. A cross-site scripting (XSS) vulnerability exists in the /admin/manage-users.php file, arising from lack of proper filtering/escaping of user-supplied data in the affected element. The vulnerability is exploitable remotely...

CVE-2025-12281 code-projects Client Details System clientview.php cross site scripting

A vulnerability was determined in code-projects Client Details System 1.0. Impacted is an unknown function of the file /admin/clientview.php. Executing manipulation can lead to cross site scripting. It is possible to launch the attack remotely. The exploit has been publicly disclosed and may be...

CVE-2025-12281

The CVE-2025-12281 entry concerns code-projects Client Details System 1.0. A Cross-Site Scripting vulnerability affects the file /admin/clientview.php due to lack of proper input filtering/escaping in an unknown function. Multiple connected sources corroborate remote exploitability and publicly d...

CVE-2025-12281 code-projects Client Details System clientview.php cross site scripting

A vulnerability was determined in code-projects Client Details System 1.0. Impacted is an unknown function of the file /admin/clientview.php. Executing manipulation can lead to cross site scripting. It is possible to launch the attack remotely. The exploit has been publicly disclosed and may be...

CVE-2025-12280

Code-projects Client Details System 1.0 has a cross-site scripting vulnerability in the update-clients.php processing path. Multiple sources (CNVD, RH, EUVD, NVD, CVE listing, and related advisories) describe that lack of proper filtering/escaping of user-supplied data in /update-clients.php enab...

CVE-2025-12280 code-projects Client Details System update-clients.php cross site scripting

A vulnerability was found in code-projects Client Details System 1.0. This issue affects some unknown processing of the file /update-clients.php. Performing manipulation results in cross site scripting. It is possible to initiate the attack remotely. The exploit has been made public and could be...

CVE-2025-12280 code-projects Client Details System update-clients.php cross site scripting

A vulnerability was found in code-projects Client Details System 1.0. This issue affects some unknown processing of the file /update-clients.php. Performing manipulation results in cross site scripting. It is possible to initiate the attack remotely. The exploit has been made public and could be...

CVE-2025-12279 code-projects Client Details System welcome.php cross site scripting

A vulnerability has been found in code-projects Client Details System 1.0. This vulnerability affects unknown code of the file /welcome.php. Such manipulation leads to cross site scripting. The attack may be performed from remote. The exploit has been disclosed to the public and may be used...

CVE-2025-12279 code-projects Client Details System welcome.php cross site scripting

A vulnerability has been found in code-projects Client Details System 1.0. This vulnerability affects unknown code of the file /welcome.php. Such manipulation leads to cross site scripting. The attack may be performed from remote. The exploit has been disclosed to the public and may be used...

CVE-2025-12279

CVE-2025-12279 affects code-projects Client Details System 1.0, with a cross-site scripting flaw in /welcome.php due to insufficient input filtering/escaping. The vulnerability is remote-exploitable and has been publicly disclosed; CVSS indicators show MEDIUM impact with LOW confidentiality/integ...

EUVD-2025-36174

A vulnerability has been found in code-projects Client Details System 1.0. This vulnerability affects unknown code of the file /welcome.php. Such manipulation leads to cross site scripting. The attack may be performed from remote. The exploit has been disclosed to the public and may be used...

CVE-2025-12263 code-projects Online Event Judging System edit_judge.php sql injection

A vulnerability was identified in code-projects Online Event Judging System 1.0. Affected is an unknown function of the file /editjudge.php. The manipulation of the argument judgeid leads to sql injection. The attack may be initiated remotely. The exploit is publicly available and might be used...

CVE-2025-12263

CVE-2025-12263 affects code-projects Online Event Judging System 1.0. The /edit_judge.php file is vulnerable to SQL injection via the judge_id parameter. The vulnerability can be exploited remotely and public exploit may exist, potentially enabling unauthorized data access or modification. Public...

EUVD-2025-36145

A vulnerability was identified in code-projects Online Event Judging System 1.0. Affected is an unknown function of the file /editjudge.php. The manipulation of the argument judgeid leads to sql injection. The attack may be initiated remotely. The exploit is publicly available and might be used...

CVE-2025-12262 code-projects Online Event Judging System edit_criteria.php sql injection

A vulnerability was determined in code-projects Online Event Judging System 1.0. This impacts an unknown function of the file /editcriteria.php. Executing manipulation of the argument critid can lead to sql injection. The attack can be launched remotely. The exploit has been publicly disclosed an...

CVE-2025-12262

Vulnerability summary (CVE-2025-12262) : The code-projects Online Event Judging System 1.0 is affected. The SQL injection originates from unsafely handling the parameter crit_id in the file /edit_criteria.php , enabling remote exploitation. Multiple connected sources (CNVD/CNNVD/Red Hat advisory ...