CVE-2025-12280 code-projects Client Details System update-clients.php cross site scripting

A vulnerability was found in code-projects Client Details System 1.0. This issue affects some unknown processing of the file /update-clients.php. Performing manipulation results in cross site scripting. It is possible to initiate the attack remotely. The exploit has been made public and could be...

CVE-2025-12280 code-projects Client Details System update-clients.php cross site scripting

A vulnerability was found in code-projects Client Details System 1.0. This issue affects some unknown processing of the file /update-clients.php. Performing manipulation results in cross site scripting. It is possible to initiate the attack remotely. The exploit has been made public and could be...

CVE-2025-12280

Code-projects Client Details System 1.0 has a cross-site scripting vulnerability in the update-clients.php processing path. Multiple sources (CNVD, RH, EUVD, NVD, CVE listing, and related advisories) describe that lack of proper filtering/escaping of user-supplied data in /update-clients.php enab...

EUVD-2025-36174

A vulnerability has been found in code-projects Client Details System 1.0. This vulnerability affects unknown code of the file /welcome.php. Such manipulation leads to cross site scripting. The attack may be performed from remote. The exploit has been disclosed to the public and may be used...

CVE-2025-12279 code-projects Client Details System welcome.php cross site scripting

A vulnerability has been found in code-projects Client Details System 1.0. This vulnerability affects unknown code of the file /welcome.php. Such manipulation leads to cross site scripting. The attack may be performed from remote. The exploit has been disclosed to the public and may be used...

CVE-2025-12279

CVE-2025-12279 affects code-projects Client Details System 1.0, with a cross-site scripting flaw in /welcome.php due to insufficient input filtering/escaping. The vulnerability is remote-exploitable and has been publicly disclosed; CVSS indicators show MEDIUM impact with LOW confidentiality/integ...

CVE-2025-12279 code-projects Client Details System welcome.php cross site scripting

A vulnerability has been found in code-projects Client Details System 1.0. This vulnerability affects unknown code of the file /welcome.php. Such manipulation leads to cross site scripting. The attack may be performed from remote. The exploit has been disclosed to the public and may be used...

CVE-2025-12263

CVE-2025-12263 affects code-projects Online Event Judging System 1.0. The /edit_judge.php file is vulnerable to SQL injection via the judge_id parameter. The vulnerability can be exploited remotely and public exploit may exist, potentially enabling unauthorized data access or modification. Public...

CVE-2025-12263 code-projects Online Event Judging System edit_judge.php sql injection

A vulnerability was identified in code-projects Online Event Judging System 1.0. Affected is an unknown function of the file /editjudge.php. The manipulation of the argument judgeid leads to sql injection. The attack may be initiated remotely. The exploit is publicly available and might be used...

EUVD-2025-36145

A vulnerability was identified in code-projects Online Event Judging System 1.0. Affected is an unknown function of the file /editjudge.php. The manipulation of the argument judgeid leads to sql injection. The attack may be initiated remotely. The exploit is publicly available and might be used...

CVE-2025-12262 code-projects Online Event Judging System edit_criteria.php sql injection

A vulnerability was determined in code-projects Online Event Judging System 1.0. This impacts an unknown function of the file /editcriteria.php. Executing manipulation of the argument critid can lead to sql injection. The attack can be launched remotely. The exploit has been publicly disclosed an...

CVE-2025-12262

Vulnerability summary (CVE-2025-12262) : The code-projects Online Event Judging System 1.0 is affected. The SQL injection originates from unsafely handling the parameter crit_id in the file /edit_criteria.php , enabling remote exploitation. Multiple connected sources (CNVD/CNNVD/Red Hat advisory ...

CVE-2025-12262 code-projects Online Event Judging System edit_criteria.php sql injection

A vulnerability was determined in code-projects Online Event Judging System 1.0. This impacts an unknown function of the file /editcriteria.php. Executing manipulation of the argument critid can lead to sql injection. The attack can be launched remotely. The exploit has been publicly disclosed an...

CVE-2025-12256 code-projects Online Event Judging System edit_contestant.php sql injection

A weakness has been identified in code-projects Online Event Judging System 1.0. This vulnerability affects unknown code of the file /editcontestant.php. Executing manipulation of the argument contestantid can lead to sql injection. The attack can be executed remotely. The exploit has been made...

CVE-2025-12255

CVE-2025-12255 affects code-projects Online Event Judging System 1.0. A SQL injection flaw originates from the lack of validation of the fullname parameter in /add_contestant.php. The vulnerability allows remote execution of arbitrary SQL commands and may lead to data theft or modification; an ex...

CVE-2025-12255 code-projects Online Event Judging System add_contestant.php sql injection

A security flaw has been discovered in code-projects Online Event Judging System 1.0. This affects an unknown part of the file /addcontestant.php. Performing manipulation of the argument fullname results in sql injection. Remote exploitation of the attack is possible. The exploit has been release...

CVE-2025-12254 code-projects Online Event Judging System add_judge.php sql injection

A vulnerability was identified in code-projects Online Event Judging System 1.0. Affected by this issue is some unknown functionality of the file /addjudge.php. Such manipulation of the argument fullname leads to sql injection. The attack may be launched remotely. The exploit is publicly availabl...

CVE-2025-12254

The CVE-2025-12254 entry concerns code-projects Online Event Judging System 1.0, with a SQL injection vulnerability in the add_judge.php handler caused by unsanitized input through the fullname parameter. Multiple connected sources describe this flaw as allowing remote exploitation to execute arb...

CVE-2025-12254 code-projects Online Event Judging System add_judge.php sql injection

A vulnerability was identified in code-projects Online Event Judging System 1.0. Affected by this issue is some unknown functionality of the file /addjudge.php. Such manipulation of the argument fullname leads to sql injection. The attack may be launched remotely. The exploit is publicly availabl...

CVE-2025-12252

Summary: Multiple sources confirm a SQL injection in Code-Projects Online Event Judging System 1.0, arising from /ajax/action.php via manipulation of the content parameter. This is an externally exploitable, remote flaw with public exploit presence. Concrete details across CNVD-2025-26165, RH-CVE...