CVE-2025-7476 code-projects Simple Car Rental System approve.php sql injection

A vulnerability classified as critical was found in code-projects Simple Car Rental System 1.0. This vulnerability affects unknown code of the file /admin/approve.php. The manipulation of the argument ID leads to sql injection. The attack can be initiated remotely. The exploit has been disclosed ...

CVE-2025-7474

A vulnerability was found in code-projects Job Diary 1.0. It has been rated as critical. Affected by this issue is some unknown functionality of the file /search.php. The manipulation of the argument Search leads to sql injection. The attack may be launched remotely. The exploit has been disclose...

CVE-2025-7471

A vulnerability was found in code-projects Modern Bag 1.0. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /admin/login-back.php. The manipulation of the argument user-name leads to sql injection. The attack can be launched remotely. The...

CVE-2025-7474 code-projects Job Diary search.php sql injection

A vulnerability was found in code-projects Job Diary 1.0. It has been rated as critical. Affected by this issue is some unknown functionality of the file /search.php. The manipulation of the argument Search leads to sql injection. The attack may be launched remotely. The exploit has been disclose...

CVE-2025-7471

Summary: CVE-2025-7471 affects code-projects Modern Bag 1.0. Affected component: /admin/login-back.php. Root cause: input manipulation of the parameter user-name enables SQL injection. Impact: remote exploitation with potential data theft; exploitation publicly disclosed. Evidence from connected ...

CVE-2025-7467

CVE-2025-7467 affects code-projects Modern Bag 1.0. The vulnerability is in the file /product-detail.php where the ID parameter can be manipulated to perform SQL injection. This allows remote initiation of an attack, and the exploit has been disclosed publicly. Connected sources corroborate an SQ...

CVE-2025-7461 code-projects Modern Bag action.php sql injection

A vulnerability was found in code-projects Modern Bag 1.0 and classified as critical. Affected by this issue is some unknown functionality of the file /action.php. The manipulation of the argument proId leads to sql injection. The attack may be launched remotely. The exploit has been disclosed to...

CVE-2025-7461 code-projects Modern Bag action.php sql injection

A vulnerability was found in code-projects Modern Bag 1.0 and classified as critical. Affected by this issue is some unknown functionality of the file /action.php. The manipulation of the argument proId leads to sql injection. The attack may be launched remotely. The exploit has been disclosed to...

Code-Projects Simple Car Rental System 注入漏洞

Code-Projects Simple Car Rental System is an open source car rental software from Code-Projects. An injection vulnerability exists in Code-Projects Simple Car Rental System version 1.0, which stems from SQL injection due to incorrect manipulation of the parameter mpesa in the file /pay.php...

Code-Projects Simple Car Rental System 注入漏洞

Code-Projects Simple Car Rental System is an open source car rental software from Code-Projects. An injection vulnerability exists in Code-Projects Simple Car Rental System version 1.0, which originates from SQL injection due to incorrect manipulation of the parameter ID in the file...

PT-2025-29323 · Unknown · Modern Bag

Name of the Vulnerable Software and Affected Versions: code-projects Modern Bag version 1.0 Description: A vulnerability exists in code-projects Modern Bag 1.0. This issue is a SQL injection affecting an unknown functionality of the /admin/login-back.php file. Manipulation of the user-name argume...

PT-2025-29325 · Code Projects · Job Diary

Name of the Vulnerable Software and Affected Versions: code-projects Job Diary version 1.0 Description: A critical issue exists in code-projects Job Diary 1.0, affecting an unknown functionality within the /search.php file. The Search argument is susceptible to SQL injection, allowing for remote...

Code-Projects Simple Car Rental System 代码问题漏洞

Code-Projects Simple Car Rental System is an open source car rental software from Code-Projects. A code issue vulnerability exists in Code-Projects Simple Car Rental System version 1.0, which arises from an arbitrary file upload due to incorrect manipulation of the parameter image in the file...

CVE-2025-7412

A vulnerability was found in code-projects Library System 1.0. It has been rated as critical. Affected by this issue is some unknown functionality of the file /user/student/profile.php. The manipulation of the argument image leads to unrestricted upload. The attack may be launched remotely. The...

CVE-2025-7413

A vulnerability classified as critical has been found in code-projects Library System 1.0. This affects an unknown part of the file /user/teacher/profile.php. The manipulation of the argument image leads to unrestricted upload. It is possible to initiate the attack remotely. The exploit has been...

CVE-2025-7413 code-projects Library System profile.php unrestricted upload

A vulnerability classified as critical has been found in code-projects Library System 1.0. This affects an unknown part of the file /user/teacher/profile.php. The manipulation of the argument image leads to unrestricted upload. It is possible to initiate the attack remotely. The exploit has been...

CVE-2025-7413

The CVE-2025-7413 issue affects code-projects Library System 1.0, specifically the /user/teacher/profile.php file. The root cause is improper handling/validation of the image parameter, which allows unrestricted file uploads. This enables remote initiation of an attack and matches the reported pu...

CVE-2025-7412 code-projects Library System profile.php unrestricted upload

A vulnerability was found in code-projects Library System 1.0. It has been rated as critical. Affected by this issue is some unknown functionality of the file /user/student/profile.php. The manipulation of the argument image leads to unrestricted upload. The attack may be launched remotely. The...

CVE-2025-7412

CVE-2025-7412 concerns code-projects Library System 1.0. The vulnerability lies in /user/student/profile.php where manipulation of the image parameter enables unrestricted file upload. Allied reports (Red Hat, NVD, CNVD, PT-Security, CNVD, etc.) consistently describe the issue as a critical, remo...

CVE-2025-7412 code-projects Library System profile.php unrestricted upload

A vulnerability was found in code-projects Library System 1.0. It has been rated as critical. Affected by this issue is some unknown functionality of the file /user/student/profile.php. The manipulation of the argument image leads to unrestricted upload. The attack may be launched remotely. The...