CVE-2024-12231

CodeZips Project Management System 1.0 contains an SQL injection vulnerability in /index.php, triggered by manipulating the email parameter. Root cause is improper input handling, enabling remote exploitation with high impact on confidentiality, integrity, and availability. Public exploit informa...

CVE-2025-0233

CVE-2025-0233 affects Codezips Project Management System 1.0. The vulnerability is an SQL injection in the /pages/forms/course.php file caused by the course_name argument. It is exploitable remotely and has been publicly disclosed. Connected sources indicate no official fix version; a workaround ...

CVE-2025-0336

The CVE-2025-0336 entry concerns Codezips Project Management System version 1.0 with a SQL injection in an unclear area of /pages/forms/teacher.php caused by manipulation of the argument name. Attacks can be launched remotely, and public disclosure is noted. Several connected sources corroborate:...

CVE-2024-12926

CVE-2024-12926 affects Codezips Project Management System version 1.0. The vulnerability is in /pages/forms/advanced.php, where manipulation of the name parameter leads to SQL injection. It can be exploited remotely and exploit details have been disclosed publicly. Practical impact includes poten...