CVE-2025-12280

Code-projects Client Details System 1.0 has a cross-site scripting vulnerability in the update-clients.php processing path. Multiple sources (CNVD, RH, EUVD, NVD, CVE listing, and related advisories) describe that lack of proper filtering/escaping of user-supplied data in /update-clients.php enab...