CVE-2025-0299

Medium CVSS: 5.3

A vulnerability classified as critical has been found in code-projects Online Book Shop 1.0. Affected is an unknown function of the file /search_result.php. The manipulation of the argument s leads to sql injection. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used.

Vendor

Code-projects

Product

Online Book Shop

CWE

CWE-74

Yayın Tarihi

2025-01-07 17:15:31

Güncelleme

2025-04-07 18:42:58

Source Identifier

cna@vuldb.com

KEV Date Added

Kategoriler

CWE-74 Online Book Shop MEDIUM Code-projects 2025

Referanslar

https://code-projects.org/ https://gist.github.com/th4s1s/b30a06e83b98ddcbc69b9038c145d8cd https://vuldb.com/?ctiid.290448 https://vuldb.com/?id.290448 https://vuldb.com/?submit.475285 https://gist.github.com/th4s1s/b30a06e83b98ddcbc69b9038c145d8cd

Benzer Kayıtlar

Medium

CVE-2026-5256

A flaw has been found in code-projects Simple Laundry System 1.0. This vulnerability affects unknown code of the file /m…

Medium

CVE-2026-5257

A vulnerability has been found in code-projects Simple Laundry System 1.0. This issue affects some unknown processing of…

Medium

CVE-2026-5255

A vulnerability was detected in code-projects Simple Laundry System 1.0. This affects an unknown part of the file /delst…

Medium

CVE-2026-5106

A flaw has been found in code-projects Exam Form Submission 1.0. The impacted element is an unknown function of the file…

Medium

CVE-2026-4908

A security flaw has been discovered in code-projects Simple Laundry System 1.0. This affects an unknown function of the…

Medium

CVE-2026-4849

A vulnerability was identified in code-projects Simple Laundry System 1.0. This impacts an unknown function of the file…