4 matches found
CVE-2025-6467
A vulnerability was found in code-projects Online Bidding System 1.0. It has been classified as critical. This affects an unknown part of the file /login.php. The manipulation of the argument User leads to sql injection. It is possible to initiate the attack remotely. The exploit has been disclos...
CVE-2025-6467
creationtimestamp| type| source ---|---|--- 2025-06-22 05:43:37+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/19151 2025-06-22 07:01:26+00:00| published-proof-of-concept| Telegram/qs1nxWm3pGDE4MGx8RtfShNjOKre0a0uOKNr325uN9wVJoU 2025-06-22 09:58:46+00:00| seen|...
CVE-2025-6467 code-projects Online Bidding System login.php sql injection
A vulnerability was found in code-projects Online Bidding System 1.0. It has been classified as critical. This affects an unknown part of the file /login.php. The manipulation of the argument User leads to sql injection. It is possible to initiate the attack remotely. The exploit has been disclos...
CVE-2025-6467
The CVE-2025-6467 entry concerns code-projects Online Bidding System 1.0. Multiple connected sources confirm a SQL injection vulnerability in the login.php handler via the User parameter, exploitable remotely. Affected component: login.php; exploit appears to originate from unsanitized SQL constr...