CVE-2025-7166

CVE-2025-7166 affects the code-projects Responsive Blog Site 1.0, with vulnerability in an unknown part of /single.php where manipulating the ID parameter leads to SQL injection. Multiple connected sources describe remote exploitation and public disclosure, implying exploitability in practice. Th...

Code-Projects E-Commerce Site 代码问题漏洞

E-Commerce Site is an e-commerce site. E-Commerce Site suffers from an arbitrary file upload vulnerability that stems from improper manipulation of the parameter photo in the file /admin/usersphoto.php, no details of the vulnerability are available at this time...

Code-Projects Responsive Blog Site 注入漏洞

Code-Projects Responsive Blog Site is a responsive blog site from Code-Projects open source. An injection vulnerability exists in Code-Projects Responsive Blog Site version 1.0, which stems from an incorrect manipulation of the parameter ID in the file /single.php resulting in SQL injection...

PT-2025-28370 · Unknown · Code-Projects Library System

Name of the Vulnerable Software and Affected Versions: code-projects Library System version 1.0 Description: A critical issue has been found in the code-projects Library System, affecting unknown code in the /add-student.php file. The manipulation of the Username argument leads to SQL injection...

PT-2025-28404 · Unknown · Code-Projects Library System

Name of the Vulnerable Software and Affected Versions: code-projects Library System version 1.0 Description: A critical issue affects the processing of the file "/teacher-issue-book.php". The manipulation of the idn argument leads to SQL injection. The attack can be initiated remotely...

Code-Projects Responsive Blog Site 注入漏洞

Code-Projects Responsive Blog Site is a responsive blog site from Code-Projects open source. Code-Projects Responsive Blog Site version 1.0 suffers from an injection vulnerability that stems from SQL injection due to incorrect manipulation of the parameter ID in the file /category.php...

PT-2025-28325 · Unknown · Code-Projects Online Note Sharing

Name of the Vulnerable Software and Affected Versions: code-projects Online Note Sharing version 1.0 Description: A critical issue was found in the code, affecting an unknown function of the file /login.php. The manipulation of the username and password arguments leads to SQL injection. This issu...

PT-2025-28487 · Unknown · Code-Projects Library System

Name of the Vulnerable Software and Affected Versions: code-projects Library System version 1.0 Description: A critical issue has been found in the code-projects Library System. The problem affects an unknown part of the file /user/teacher/books.php. The manipulation of the Search argument leads ...

PT-2025-28500 · Code Projects · Code-Projects Chat System

Name of the Vulnerable Software and Affected Versions: code-projects Chat System version 1.0 Description: A critical issue affects the processing of the file /user/fetch chat.php, where the manipulation of the ID argument leads to SQL injection. The attack can be initiated remotely...

PT-2025-28757 · Unknown · Code-Projects Jonnys Liquor

Name of the Vulnerable Software and Affected Versions: code-projects Jonnys Liquor version 1.0 Description: A critical issue exists in an unknown functionality of the file /browse.php. Manipulation of the Search argument results in SQL injection. The attack can be launched remotely. The exploit h...

PT-2025-28800 · Unknown · Code-Projects Library System

Name of the Vulnerable Software and Affected Versions: Code-projects Library System version 1.0 Description: A critical issue has been found in the processing of the file /notapprove.php, where the manipulation of the ID argument leads to SQL injection. This issue can be exploited remotely...

PT-2025-28359 · Unknown · Code-Projects Crime Reporting System

Name of the Vulnerable Software and Affected Versions: code-projects Crime Reporting System version 1.0 Description: A critical issue has been discovered in the code-projects Crime Reporting System, affecting an unknown function of the /complainer page.php file. The manipulation of the argument...

PT-2025-28652 · Unknown · Code-Projects Chat System

Name of the Vulnerable Software and Affected Versions: code-projects Chat System version 1.0 Description: A critical issue has been found in the code-projects Chat System, affecting some unknown functionality of the file /user/send message.php. The manipulation of the msg argument leads to SQL...

PT-2025-28641 · Unknown · Code-Projects Chat System

Name of the Vulnerable Software and Affected Versions: code-projects Chat System version 1.0 Description: A critical issue was found in the code-projects Chat System. The problem affects an unknown functionality of the file "/user/addmember.php". The manipulation of the ID argument leads to SQL...

PT-2025-28489 · Unknown · Code-Projects Library System

Name of the Vulnerable Software and Affected Versions: code-projects Library System version 1.0 Description: A critical issue has been discovered, affecting the /approve.php file. The manipulation of the ID argument leads to SQL injection. This issue can be exploited remotely. Recommendations: Fo...

Code-Projects Staff Audit System 安全漏洞

Code-Projects Staff Audit System is an open source staff audit system from Code-Projects. A security vulnerability exists in Code-Projects Staff Audit System version 1.0, which stems from improper manipulation of the parameter uploadedfile in the file /test.php, which could lead to arbitrary file...

Code-Projects Food Distributor Site 注入漏洞

Code-Projects Food Distributor Site is a Code-Projects open source food distributor site. Code-Projects Food Distributor Site version 1.0 suffers from an injection vulnerability that stems from improper manipulation of the parameter Username in the file /admin/login.php, which could lead to a SQL...

PT-2025-28363 · Unknown · Code-Projects Crime Reporting System

Name of the Vulnerable Software and Affected Versions: code-projects Crime Reporting System version 1.0 Description: A critical vulnerability exists in code-projects Crime Reporting System 1.0. The issue is located in an unknown part of the file /headlogin.php. Manipulation of the email argument...

PT-2025-28661 · Unknown · Code-Projects Student Enrollment System

Name of the Vulnerable Software and Affected Versions: code-projects Student Enrollment System version 1.0 Description: A critical issue has been found in the code-projects Student Enrollment System, affecting the /login.php file. The manipulation of the Username argument leads to a SQL injection...

PT-2025-28339 · Unknown · Code-Projects Responsive Blog

Name of the Vulnerable Software and Affected Versions: code-projects Responsive Blog Site version 1.0 Description: A critical issue was found in the code-projects Responsive Blog Site, affecting an unknown part of the file /single.php. The manipulation of the ID argument leads to SQL injection. I...