CVE-2025-7181 code-projects Staff Audit System test.php unrestricted upload

A vulnerability, which was classified as critical, was found in code-projects Staff Audit System 1.0. Affected is an unknown function of the file /test.php. The manipulation of the argument uploadedfile leads to unrestricted upload. It is possible to launch the attack remotely. The exploit has be...

CVE-2025-7181 code-projects Staff Audit System test.php unrestricted upload

A vulnerability, which was classified as critical, was found in code-projects Staff Audit System 1.0. Affected is an unknown function of the file /test.php. The manipulation of the argument uploadedfile leads to unrestricted upload. It is possible to launch the attack remotely. The exploit has be...

CVE-2025-7180 code-projects Staff Audit System login.php sql injection

A vulnerability, which was classified as critical, has been found in code-projects Staff Audit System 1.0. This issue affects some unknown processing of the file /login.php. The manipulation of the argument User leads to sql injection. The attack may be initiated remotely. The exploit has been...

CVE-2025-7179 code-projects Library System add-teacher.php sql injection

A vulnerability classified as critical was found in code-projects Library System 1.0. This vulnerability affects unknown code of the file /add-teacher.php. The manipulation of the argument Username leads to sql injection. The attack can be initiated remotely. The exploit has been disclosed to the...

CVE-2025-7179 code-projects Library System add-teacher.php sql injection

A vulnerability classified as critical was found in code-projects Library System 1.0. This vulnerability affects unknown code of the file /add-teacher.php. The manipulation of the argument Username leads to sql injection. The attack can be initiated remotely. The exploit has been disclosed to the...

CVE-2025-7174

A vulnerability was found in code-projects Library System 1.0 and classified as critical. This issue affects some unknown processing of the file /teacher-issue-book.php. The manipulation of the argument idn leads to sql injection. The attack may be initiated remotely. The exploit has been disclos...

CVE-2025-7175 code-projects E-Commerce Site users_photo.php unrestricted upload

A vulnerability was found in code-projects E-Commerce Site 1.0. It has been classified as critical. Affected is an unknown function of the file /admin/usersphoto.php. The manipulation of the argument photo leads to unrestricted upload. It is possible to launch the attack remotely. The exploit has...

CVE-2025-7174 code-projects Library System teacher-issue-book.php sql injection

A vulnerability was found in code-projects Library System 1.0 and classified as critical. This issue affects some unknown processing of the file /teacher-issue-book.php. The manipulation of the argument idn leads to sql injection. The attack may be initiated remotely. The exploit has been disclos...

CVE-2025-7174 code-projects Library System teacher-issue-book.php sql injection

A vulnerability was found in code-projects Library System 1.0 and classified as critical. This issue affects some unknown processing of the file /teacher-issue-book.php. The manipulation of the argument idn leads to sql injection. The attack may be initiated remotely. The exploit has been disclos...

CVE-2025-7174

CVE-2025-7174 affects code-projects Library System 1.0. The vulnerability is a SQL injection caused by manipulation of the idn parameter in the file "/teacher-issue-book.php". It can be triggered remotely and has been disclosed publicly. Multiple sources (including PT-2025-28404) confirm a critic...

CVE-2025-7173

A vulnerability has been found in code-projects Library System 1.0 and classified as critical. This vulnerability affects unknown code of the file /add-student.php. The manipulation of the argument Username leads to sql injection. The attack can be initiated remotely. The exploit has been disclos...

CVE-2025-7173

CVE-2025-7173 affects code-projects Library System 1.0. The vulnerability exists in the /add-student.php file where manipulation of the Username parameter enables SQL injection. Multiple connected sources characterize this as a remote, high-impact issue with potential to exfiltrate or alter data....

CVE-2025-7173 code-projects Library System add-student.php sql injection

A vulnerability has been found in code-projects Library System 1.0 and classified as critical. This vulnerability affects unknown code of the file /add-student.php. The manipulation of the argument Username leads to sql injection. The attack can be initiated remotely. The exploit has been disclos...

CVE-2025-7173 code-projects Library System add-student.php sql injection

A vulnerability has been found in code-projects Library System 1.0 and classified as critical. This vulnerability affects unknown code of the file /add-student.php. The manipulation of the argument Username leads to sql injection. The attack can be initiated remotely. The exploit has been disclos...

CVE-2025-7171

CVE-2025-7171 concerns code-projects Crime Reporting System 1.0, where the file /policelogin.php exposes a SQL injection via the email parameter. Multiple connected sources confirm a critical, remotely exploitable vulnerability with publicly disclosed exploits. The exact affected functionality is...

CVE-2025-7169 code-projects Crime Reporting System complainer_page.php sql injection

A vulnerability classified as critical has been found in code-projects Crime Reporting System 1.0. Affected is an unknown function of the file /complainerpage.php. The manipulation of the argument location leads to sql injection. It is possible to launch the attack remotely. The exploit has been...

CVE-2025-7166

A vulnerability was found in code-projects Responsive Blog Site 1.0. It has been classified as critical. This affects an unknown part of the file /single.php. The manipulation of the argument ID leads to sql injection. It is possible to initiate the attack remotely. The exploit has been disclosed...

CVE-2025-7167

The CVE-2025-7167 entry concerns code-projects Responsive Blog Site 1.0. The affected component is the file /category.php where the manipulation of the ID parameter enables an SQL injection. This vulnerability is exploitable remotely and, per multiple sources, the exploit has been disclosed publi...

CVE-2025-7167 code-projects Responsive Blog Site category.php sql injection

A vulnerability was found in code-projects Responsive Blog Site 1.0. It has been declared as critical. This vulnerability affects unknown code of the file /category.php. The manipulation of the argument ID leads to sql injection. The attack can be initiated remotely. The exploit has been disclose...

CVE-2025-7166 code-projects Responsive Blog Site single.php sql injection

A vulnerability was found in code-projects Responsive Blog Site 1.0. It has been classified as critical. This affects an unknown part of the file /single.php. The manipulation of the argument ID leads to sql injection. It is possible to initiate the attack remotely. The exploit has been disclosed...