CVE-2025-6474
The CVE-2025-6474 entry concerns code-projects Inventory Management System 1.0 and the vulnerable file /changeUsername.php. Multiple connected reports confirm that the vulnerability is a SQL injection caused by unsafely handling the user_id parameter, enabling remote exploitation and potentially ...