4 matches found
CVE-2025-5732
The CVE-2025-5732 entry corresponds to a cross-site request forgery vulnerability in code-projects Traffic Offense Reporting System 1.0. Multiple connected sources confirm a CSRF condition affecting an unknown part of the web application, with remote initiation possible and the exploit publicly d...
CVE-2025-5757
Code-projects Traffic Offense Reporting System 1.0 is affected by a cross-site scripting vulnerability in /save-reported.php. User-supplied parameters such as offence_id, vehicle_no, driver_license, name, address, gender, officer_reporting, and offence can be manipulated to inject malicious scrip...
CVE-2025-5661
CVE-2025-5661 affects code-projects Traffic Offense Reporting System 1.0, specifically the Setting Handler’s save-settings.php. The vulnerability arises from improper handling of the site_name (or “site name”) parameter, leading to cross-site scripting (XSS). It can be exploited remotely, and pub...
CVE-2025-5651
CVE-2025-5651 affects code-projects Traffic Offense Reporting System 1.0. The vulnerability is caused by cross-site scripting in saveuser.php due to improper handling of input parameters (user_id/username/email/name/position), enabling injection of arbitrary scripts. Reports across multiple sourc...