2 matches found
CVE-2025-14589
Summary (CVE-2025-14589) : The “code-projects Prison Management System 2.0” is affected by a SQL injection vulnerability in the file /admin/search.php, triggered by manipulating the parameter keyname . The underlying cause is lack of validation of externally supplied SQL, enabling remote exploita...
CVE-2025-14590
The CVE-2025-14590 entry relates to code-projects Prison Management System 2.0, with SQL injection in the file /admin/search1.php via the keyname parameter. The vulnerability is exploitable remotely and an exploit has been publicly disclosed. The condition is caused by lack of input validation fo...