CVE-2025-6842 code-projects Product Inventory System edit_user.php sql injection

A vulnerability was found in code-projects Product Inventory System 1.0 and classified as critical. This issue affects some unknown processing of the file /admin/edituser.php. The manipulation of the argument ID leads to sql injection. The attack may be initiated remotely. The exploit has been...

CVE-2025-6842

CVE-2025-6842 affects Code-Projects Product Inventory System 1.0. The issue is an SQL injection in the file /admin/edit_user.php caused by manipulation of the ID parameter. It can be initiated remotely and the exploit has been disclosed publicly. Affected component: processing of the ID in edit_u...

CVE-2025-6842 code-projects Product Inventory System edit_user.php sql injection

A vulnerability was found in code-projects Product Inventory System 1.0 and classified as critical. This issue affects some unknown processing of the file /admin/edituser.php. The manipulation of the argument ID leads to sql injection. The attack may be initiated remotely. The exploit has been...

CVE-2025-6841 code-projects Product Inventory System edit_product.php sql injection

A vulnerability has been found in code-projects Product Inventory System 1.0 and classified as critical. This vulnerability affects unknown code of the file /admin/editproduct.php. The manipulation of the argument ID leads to sql injection. The attack can be initiated remotely. The exploit has be...

CVE-2025-6841

CVE-2025-6841 affects code-projects Product Inventory System 1.0. The vulnerability is an SQL injection in the /admin/edit_product.php file caused by manipulation of the ID parameter. It can be exploited remotely and has public disclosure. Connected sources corroborate a critical risk profile wit...

CVE-2025-6841 code-projects Product Inventory System edit_product.php sql injection

A vulnerability has been found in code-projects Product Inventory System 1.0 and classified as critical. This vulnerability affects unknown code of the file /admin/editproduct.php. The manipulation of the argument ID leads to sql injection. The attack can be initiated remotely. The exploit has be...

CVE-2025-6840 code-projects Product Inventory System Login index.php sql injection

A vulnerability, which was classified as critical, was found in code-projects Product Inventory System 1.0. This affects an unknown part of the file /index.php of the component Login. The manipulation of the argument Username leads to sql injection. It is possible to initiate the attack remotely...

CVE-2025-6840 code-projects Product Inventory System Login index.php sql injection

A vulnerability, which was classified as critical, was found in code-projects Product Inventory System 1.0. This affects an unknown part of the file /index.php of the component Login. The manipulation of the argument Username leads to sql injection. It is possible to initiate the attack remotely...

CVE-2025-6836

A vulnerability classified as critical has been found in code-projects Library System 1.0. Affected is an unknown function of the file /profile.php. The manipulation of the argument phone leads to sql injection. It is possible to launch the attack remotely. The exploit has been disclosed to the...

CVE-2025-6837

CVE-2025-6837 affects code-projects Library System 1.0. The vulnerability is in the file /profile.php where the image parameter can be manipulated to achieve unrestricted file upload. The issue arises from lack of validation of uploaded files, enabling remote exploitation. Multiple sources corrob...

CVE-2025-6837 code-projects Library System profile.php unrestricted upload

A vulnerability classified as critical was found in code-projects Library System 1.0. Affected by this vulnerability is an unknown functionality of the file /profile.php. The manipulation of the argument image leads to unrestricted upload. The attack can be launched remotely. The exploit has been...

CVE-2025-6837 code-projects Library System profile.php unrestricted upload

A vulnerability classified as critical was found in code-projects Library System 1.0. Affected by this vulnerability is an unknown functionality of the file /profile.php. The manipulation of the argument image leads to unrestricted upload. The attack can be launched remotely. The exploit has been...

CVE-2025-6836 code-projects Library System profile.php sql injection

A vulnerability classified as critical has been found in code-projects Library System 1.0. Affected is an unknown function of the file /profile.php. The manipulation of the argument phone leads to sql injection. It is possible to launch the attack remotely. The exploit has been disclosed to the...

CVE-2025-6835 code-projects Library System student-issue-book.php sql injection

A vulnerability was found in code-projects Library System 1.0. It has been rated as critical. This issue affects some unknown processing of the file /student-issue-book.php. The manipulation of the argument reg leads to sql injection. The attack may be initiated remotely. The exploit has been...

CVE-2025-6835

CVE-2025-6835 affects code-projects Library System 1.0, with a vulnerability in the processing of the file "/student-issue-book.php" where the parameter reg can be manipulated to induce an SQL injection . The issue is exploitable remotely and has been discussed across multiple sources; CVSS vecto...

CVE-2025-6835 code-projects Library System student-issue-book.php sql injection

A vulnerability was found in code-projects Library System 1.0. It has been rated as critical. This issue affects some unknown processing of the file /student-issue-book.php. The manipulation of the argument reg leads to sql injection. The attack may be initiated remotely. The exploit has been...

PT-2025-27336 · Unknown · Code-Projects Library System

Name of the Vulnerable Software and Affected Versions: code-projects Library System version 1.0 Description: A critical vulnerability has been found in the code-projects Library System. The issue affects an unknown function of the file /profile.php. The manipulation of the phone argument leads to...

Code-Projects Product Inventory System 注入漏洞

Code-Projects Product Inventory System is a Code-Projects open source product inventory system . Code-Projects Product Inventory System version 1.0 suffers from an injection vulnerability that stems from SQL injection due to incorrect manipulation of the parameter ID in the file...

PT-2025-27342 · Code Projects · Code-Projects Product Inventory System

Name of the Vulnerable Software and Affected Versions: code-projects Product Inventory System version 1.0 Description: A critical issue has been discovered, affecting the file /admin/edit product.php. The manipulation of the ID argument leads to SQL injection. This issue can be exploited remotely...

PT-2025-27347 · Unknown · Code-Projects Simple Forum

Name of the Vulnerable Software and Affected Versions: code-projects Simple Forum version 1.0 Description: A critical issue affects some unknown functionality of the file "/register1.php". The manipulation of the User argument leads to SQL injection. The attack may be launched remotely...