2 matches found
CVE-2025-13059
CVE-2025-13059 affects SourceCodester Alumni Management System 1.0. The vulnerability is a SQL injection in an unknown function of the file /manage_career.php caused by manipulation of the ID parameter. Remote exploitation is possible, and public exploits have been released. Impacts are described...
CVE-2025-13468
Summary (CVE-2025-13468): In SourceCodester Alumni Management System 1.0, the Delete Handler component (admin/admin_class.php) is affected. The vulnerability arises from manipulating the argument ID in functions delete_forum, delete_career, delete_comment, delete_gallery, and delete_event, which ...