CVE-2025-6913

PHPGurukul Student Record System 3.2 contains a SQL injection flaw in /admin-profile.php via the aemailid parameter. Exploitation can be remote and the vulnerability has been disclosed publicly. The root cause is unsafe handling of the aemailid input in an unknown function of /admin-profile.php, ...

CVE-2025-6913 PHPGurukul Student Record System admin-profile.php sql injection

A vulnerability classified as critical has been found in PHPGurukul Student Record System 3.2. Affected is an unknown function of the file /admin-profile.php. The manipulation of the argument aemailid leads to sql injection. It is possible to launch the attack remotely. The exploit has been...

CVE-2025-6837

CVE-2025-6837 affects code-projects Library System 1.0. The vulnerability is in the file /profile.php where the image parameter can be manipulated to achieve unrestricted file upload. The issue arises from lack of validation of uploaded files, enabling remote exploitation. Multiple sources corrob...

CVE-2025-6837 code-projects Library System profile.php unrestricted upload

A vulnerability classified as critical was found in code-projects Library System 1.0. Affected by this vulnerability is an unknown functionality of the file /profile.php. The manipulation of the argument image leads to unrestricted upload. The attack can be launched remotely. The exploit has been...

CVE-2025-6837 code-projects Library System profile.php unrestricted upload

A vulnerability classified as critical was found in code-projects Library System 1.0. Affected by this vulnerability is an unknown functionality of the file /profile.php. The manipulation of the argument image leads to unrestricted upload. The attack can be launched remotely. The exploit has been...

CVE-2025-6836 code-projects Library System profile.php sql injection

A vulnerability classified as critical has been found in code-projects Library System 1.0. Affected is an unknown function of the file /profile.php. The manipulation of the argument phone leads to sql injection. It is possible to launch the attack remotely. The exploit has been disclosed to the...

CVE-2025-6836

CVE-2025-6836 affects code-projects Library System 1.0, with SQL injection in /profile.php via the phone parameter. It is a remote, publicly disclosed vulnerability in an unknown function, potentially allowing data disclosure. The connected documents do not provide a confirmed patch or version co...

PT-2025-27336 · Unknown · Code-Projects Library System

Name of the Vulnerable Software and Affected Versions: code-projects Library System version 1.0 Description: A critical vulnerability has been found in the code-projects Library System. The issue affects an unknown function of the file /profile.php. The manipulation of the phone argument leads to...

CVE-2025-6333 PHPGurukul Directory Management System admin-profile.php sql injection

A vulnerability, which was classified as critical, was found in PHPGurukul Directory Management System 2.0. This affects an unknown part of the file /admin/admin-profile.php. The manipulation of the argument adminname leads to sql injection. It is possible to initiate the attack remotely. The...

CVE-2025-6333 PHPGurukul Directory Management System admin-profile.php sql injection

A vulnerability, which was classified as critical, was found in PHPGurukul Directory Management System 2.0. This affects an unknown part of the file /admin/admin-profile.php. The manipulation of the argument adminname leads to sql injection. It is possible to initiate the attack remotely. The...

CVE-2025-5638 PHPGurukul Notice Board System admin-profile.php sql injection

A vulnerability has been found in PHPGurukul Notice Board System 1.0 and classified as critical. Affected by this vulnerability is an unknown functionality of the file /admin-profile.php. The manipulation of the argument mobilenumber leads to sql injection. The attack can be launched remotely. Th...

CVE-2025-5616 PHPGurukul Online Fire Reporting System profile.php sql injection

A vulnerability was found in PHPGurukul Online Fire Reporting System 1.2. It has been rated as critical. Affected by this issue is some unknown functionality of the file /admin/profile.php. The manipulation of the argument mobilenumber leads to sql injection. The attack may be launched remotely...

CVE-2025-5616

The CVE-2025-5616 issue affects PHPGurukul Online Fire Reporting System 1.2, specifically the file /admin/profile.php. The root cause is a SQL injection in the mobilenumber parameter, which can be exploited remotely and may allow attackers to access or exfiltrate database data. Several connected ...

CVE-2025-5616 PHPGurukul Online Fire Reporting System profile.php sql injection

A vulnerability was found in PHPGurukul Online Fire Reporting System 1.2. It has been rated as critical. Affected by this issue is some unknown functionality of the file /admin/profile.php. The manipulation of the argument mobilenumber leads to sql injection. The attack may be launched remotely...

CVE-2025-5582

A vulnerability was found in CodeAstro Real Estate Management System 1.0. It has been rated as critical. This issue affects some unknown processing of the file /profile.php. The manipulation of the argument content leads to sql injection. The attack may be initiated remotely. The exploit has been...

CVE-2025-5582 CodeAstro Real Estate Management System profile.php sql injection

A vulnerability was found in CodeAstro Real Estate Management System 1.0. It has been rated as critical. This issue affects some unknown processing of the file /profile.php. The manipulation of the argument content leads to sql injection. The attack may be initiated remotely. The exploit has been...

CVE-2025-5582

CVE-2025-5582 affects CodeAstro Real Estate Management System 1.0. The vulnerability is a SQL injection in the /profile.php file caused by improper handling of the content parameter, enabling remote exploitation. Publicly disclosed exploit code exists; impact is aligned with high confidentiality/...

CVE-2025-5582 CodeAstro Real Estate Management System profile.php sql injection

A vulnerability was found in CodeAstro Real Estate Management System 1.0. It has been rated as critical. This issue affects some unknown processing of the file /profile.php. The manipulation of the argument content leads to sql injection. The attack may be initiated remotely. The exploit has been...

CVE-2025-5577

A vulnerability, which was classified as critical, was found in PHPGurukul Dairy Farm Shop Management System 1.3. Affected is an unknown function of the file /profile.php. The manipulation of the argument mobilenumber leads to sql injection. It is possible to launch the attack remotely. The explo...

CVE-2025-5577 PHPGurukul Dairy Farm Shop Management System profile.php sql injection

A vulnerability, which was classified as critical, was found in PHPGurukul Dairy Farm Shop Management System 1.3. Affected is an unknown function of the file /profile.php. The manipulation of the argument mobilenumber leads to sql injection. It is possible to launch the attack remotely. The explo...