2 matches found
CVE-2025-0535
Codezips Gym Management System 1.0 is affected by a SQL injection in /dashboard/admin/edit_mem_submit.php via the uid parameter. The vulnerability’s root cause is unvalidated uid allowing attacker-controlled input to influence SQL queries. The CVE notes remote exploitation and public disclosure. ...
CVE-2025-0535 Codezips Gym Management System edit_mem_submit.php sql injection
A vulnerability classified as critical has been found in Codezips Gym Management System 1.0. This affects an unknown part of the file /dashboard/admin/editmemsubmit.php. The manipulation of the argument uid leads to sql injection. It is possible to initiate the attack remotely. The exploit has be...