CVE-2025-29426

Code-projects Online Class and Exam Scheduling System V1.0 is vulnerable to Cross Site Scripting XSS in /pages/class.php via the id and cys parameters...

CVE-2025-29430

Code-projects Online Class and Exam Scheduling System V1.0 is vulnerable to Cross Site Scripting XSS in /pages/room.php via the id and rome parameters...

CVE-2025-29429

Code-projects Online Class and Exam Scheduling System V1.0 is vulnerable to Cross Site Scripting XSS in /pages/program.php via the id, code, and name parameters...

CVE-2025-29425

Code-projects Online Class and Exam Scheduling System 1.0 is vulnerable to SQL Injection in examsave.php via the parameters member and first...

CVE-2025-29429

Code-projects Online Class and Exam Scheduling System V1.0 is vulnerable to Cross Site Scripting XSS in /pages/program.php via the id, code, and name parameters...

PT-2025-11549 · Unknown · Code-Projects Online Class/Exam Scheduling System

Name of the Vulnerable Software and Affected Versions: code-projects Online Class and Exam Scheduling System version 1.0 Description: A critical issue has been found in the system, affecting the processing of the file /pages/activate.php. The manipulation of the id argument leads to SQL injection...

CVE-2025-29425

Code-projects Online Class and Exam Scheduling System 1.0 is vulnerable to SQL Injection in examsave.php via the parameters member and first...

CVE-2025-29427

The CVE-2025-29427 entry concerns Code-projects Online Class and Exam Scheduling System V1.0. The vulnerability is a Cross Site Scripting (XSS) flaw in profile.php, triggered by the parameters member_first and member_last. The issue arises from insufficient input handling (lack of proper filterin...

CVE-2025-29429

CVE-2025-29429 affects Code-projects Online Class and Exam Scheduling System V1.0. The vulnerability is a cross-site scripting (XSS) issue in the /pages/program.php endpoint, exploitable via the id, code, and name parameters. The CVSS 3.1 vector is CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N wit...