Lucene search
K

125 matches found

Vulnrichment
Vulnrichment
added 2025/03/27 1:0 p.m.9 views

CVE-2025-2847 Codezips Gym Management System over_month.php sql injection

A vulnerability, which was classified as critical, has been found in Codezips Gym Management System 1.0. This issue affects some unknown processing of the file /dashboard/admin/overmonth.php. The manipulation of the argument mm leads to sql injection. The attack may be initiated remotely. The...

6.5CVSS6.8AI score0.00476EPSS
Exploits1References4
CVE
CVE
added 2025/03/27 1:0 p.m.61 views

CVE-2025-2847

Codezips Gym Management System 1.0 contains a SQL injection vulnerability in /dashboard/admin/over_month.php caused by unsafe handling of the mm parameter. The issue is exploitable remotely and is publicly disclosed; it allows an attacker with network access to potentially impact confidentiality,...

8.8CVSS6.8AI score0.00476EPSS
Exploits1References4Affected Software1
RedhatCVE
RedhatCVE
added 2025/03/05 7:1 a.m.11 views

CVE-2025-1854

A vulnerability was found in Codezips Gym Management System 1.0. It has been classified as critical. Affected is an unknown function of the file /dashboard/admin/delmember.php. The manipulation of the argument name leads to sql injection. It is possible to launch the attack remotely. The exploit...

8.8CVSS7.6AI score0.00462EPSS
Exploits1References1
NVD
NVD
added 2025/03/04 11:15 p.m.28 views

CVE-2025-1959

A vulnerability, which was classified as critical, was found in Codezips Gym Management System 1.0. Affected is an unknown function of the file /changespwd.php. The manipulation of the argument loginid/loginkey leads to sql injection. It is possible to launch the attack remotely. The exploit has...

9.8CVSS0.00554EPSS
Exploits1References4
Vulnrichment
Vulnrichment
added 2025/03/04 10:31 p.m.10 views

CVE-2025-1959 Codezips Gym Management System change_s_pwd.php sql injection

A vulnerability, which was classified as critical, was found in Codezips Gym Management System 1.0. Affected is an unknown function of the file /changespwd.php. The manipulation of the argument loginid/loginkey leads to sql injection. It is possible to launch the attack remotely. The exploit has...

7.5CVSS7.5AI score0.00554EPSS
Exploits1References4
Cvelist
Cvelist
added 2025/03/04 10:31 p.m.35 views

CVE-2025-1959 Codezips Gym Management System change_s_pwd.php sql injection

A vulnerability, which was classified as critical, was found in Codezips Gym Management System 1.0. Affected is an unknown function of the file /changespwd.php. The manipulation of the argument loginid/loginkey leads to sql injection. It is possible to launch the attack remotely. The exploit has...

7.5CVSS0.00554EPSS
Exploits1References4
CVE
CVE
added 2025/03/04 10:31 p.m.65 views

CVE-2025-1959

CVE-2025-1959 affects Codezips Gym Management System 1.0. The vulnerability exists in an unknown function of /change_s_pwd.php, where manipulation of the login_id/login_key parameters enables SQL injection. Exploitation is remote, and multiple sources confirm public disclosure. No official patch/...

9.8CVSS7.5AI score0.00554EPSS
Exploits1References4Affected Software1
Positive Technologies
Positive Technologies
added 2025/03/04 12:0 a.m.5 views

PT-2025-9717 · Unknown · Codezips Gym Management System

Name of the Vulnerable Software and Affected Versions: Codezips Gym Management System version 1.0 Description: A critical vulnerability was found in the Codezips Gym Management System. The issue affects an unknown function of the file /change s pwd.php. The manipulation of the login id argument...

9.8CVSS7.6AI score0.00554EPSS
Exploits1References9
NVD
NVD
added 2025/03/03 8:15 a.m.9 views

CVE-2025-1856

A vulnerability was found in Codezips Gym Management System 1.0. It has been rated as critical. Affected by this issue is some unknown functionality of the file /dashboard/admin/geninvoice.php. The manipulation of the argument id leads to sql injection. The attack may be launched remotely. The...

9.8CVSS0.00554EPSS
Exploits1References4
OSV
OSV
added 2025/03/03 8:15 a.m.4 views

CVE-2025-1856

A vulnerability was found in Codezips Gym Management System 1.0. It has been rated as critical. Affected by this issue is some unknown functionality of the file /dashboard/admin/geninvoice.php. The manipulation of the argument id leads to sql injection. The attack may be launched remotely. The...

9.8CVSS5.8AI score
Exploits0References4
Vulnrichment
Vulnrichment
added 2025/03/03 7:31 a.m.8 views

CVE-2025-1856 Codezips Gym Management System gen_invoice.php sql injection

A vulnerability was found in Codezips Gym Management System 1.0. It has been rated as critical. Affected by this issue is some unknown functionality of the file /dashboard/admin/geninvoice.php. The manipulation of the argument id leads to sql injection. The attack may be launched remotely. The...

7.5CVSS7.5AI score0.00554EPSS
Exploits1References4
Cvelist
Cvelist
added 2025/03/03 7:31 a.m.12 views

CVE-2025-1856 Codezips Gym Management System gen_invoice.php sql injection

A vulnerability was found in Codezips Gym Management System 1.0. It has been rated as critical. Affected by this issue is some unknown functionality of the file /dashboard/admin/geninvoice.php. The manipulation of the argument id leads to sql injection. The attack may be launched remotely. The...

7.5CVSS0.00554EPSS
Exploits1References4
CVE
CVE
added 2025/03/03 7:31 a.m.63 views

CVE-2025-1856

CVE-2025-1856 affects Codezips Gym Management System 1.0. The vulnerability is an SQL injection in the /dashboard/admin/gen_invoice.php file, triggered by manipulating the id parameter. It can be exploited remotely and is labeled critical by sources. Public disclosures exist. Remediation/patch de...

9.8CVSS7.4AI score0.00554EPSS
Exploits1References4Affected Software1
OSV
OSV
added 2025/03/03 7:15 a.m.4 views

CVE-2025-1854

A vulnerability was found in Codezips Gym Management System 1.0. It has been classified as critical. Affected is an unknown function of the file /dashboard/admin/delmember.php. The manipulation of the argument name leads to sql injection. It is possible to launch the attack remotely. The exploit...

8.8CVSS6.5AI score0.00462EPSS
Exploits1References4
NVD
NVD
added 2025/03/03 7:15 a.m.10 views

CVE-2025-1854

A vulnerability was found in Codezips Gym Management System 1.0. It has been classified as critical. Affected is an unknown function of the file /dashboard/admin/delmember.php. The manipulation of the argument name leads to sql injection. It is possible to launch the attack remotely. The exploit...

8.8CVSS0.00462EPSS
Exploits1References4
Vulnrichment
Vulnrichment
added 2025/03/03 6:31 a.m.12 views

CVE-2025-1854 Codezips Gym Management System del_member.php sql injection

A vulnerability was found in Codezips Gym Management System 1.0. It has been classified as critical. Affected is an unknown function of the file /dashboard/admin/delmember.php. The manipulation of the argument name leads to sql injection. It is possible to launch the attack remotely. The exploit...

6.5CVSS6.8AI score0.00462EPSS
Exploits1References4
CVE
CVE
added 2025/03/03 6:31 a.m.49 views

CVE-2025-1854

CVE-2025-1854 affects Codezips Gym Management System 1.0. The vulnerability is in the file /dashboard/admin/del_member.php where manipulation of the argument name leads to SQL injection. The issue is exploitable remotely and has been disclosed publicly. Connected sources confirm a critical severi...

8.8CVSS7.4AI score0.00462EPSS
Exploits1References4Affected Software1
Cvelist
Cvelist
added 2025/03/03 6:31 a.m.23 views

CVE-2025-1854 Codezips Gym Management System del_member.php sql injection

A vulnerability was found in Codezips Gym Management System 1.0. It has been classified as critical. Affected is an unknown function of the file /dashboard/admin/delmember.php. The manipulation of the argument name leads to sql injection. It is possible to launch the attack remotely. The exploit...

6.5CVSS0.00462EPSS
Exploits1References4
NVD
NVD
added 2025/02/17 7:15 a.m.39 views

CVE-2025-1380

A vulnerability was found in Codezips Gym Management System 1.0 and classified as critical. Affected by this issue is some unknown functionality of the file /dashboard/admin/delplan.php. The manipulation of the argument name leads to sql injection. The attack may be launched remotely. The exploit...

9.8CVSS0.00478EPSS
Exploits1References4
Cvelist
Cvelist
added 2025/02/17 7:0 a.m.36 views

CVE-2025-1380 Codezips Gym Management System del_plan.php sql injection

A vulnerability was found in Codezips Gym Management System 1.0 and classified as critical. Affected by this issue is some unknown functionality of the file /dashboard/admin/delplan.php. The manipulation of the argument name leads to sql injection. The attack may be launched remotely. The exploit...

6.5CVSS0.00478EPSS
Exploits1References4
Rows per page
Query Builder