CVE-2025-1209

Medium CVSS: 5.1

A vulnerability classified as problematic has been found in code-projects Wazifa System 1.0. Affected is the function searchuser of the file /search_resualts.php. The manipulation of the argument firstname/lastname leads to cross site scripting. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used. There is a typo in the affected file name.

Vendor

Anisha

Product

Wazifa System

CWE

CWE-79

Yayın Tarihi

2025-02-12 17:15:23

Güncelleme

2025-02-19 19:04:43

Source Identifier

cna@vuldb.com

KEV Date Added

Kategoriler

CWE-79 Wazifa System MEDIUM Anisha 2025

Referanslar

https://code-projects.org/ https://github.com/nanguawuming/CVE2/blob/main/cve2.pdf https://vuldb.com/?ctiid.295146 https://vuldb.com/?id.295146 https://vuldb.com/?submit.497356

Benzer Kayıtlar

Medium

CVE-2025-15410

A vulnerability was identified in code-projects Online Guitar Store 1.0. Affected by this issue is some unknown function…

Medium

CVE-2025-15409

A vulnerability was determined in code-projects Online Guitar Store 1.0. Affected by this vulnerability is an unknown fu…

Medium

CVE-2025-15407

A vulnerability has been found in code-projects Online Guitar Store 1.0. This impacts an unknown function of the file /a…

Medium

CVE-2025-15408

A vulnerability was found in code-projects Online Guitar Store 1.0. Affected is an unknown function of the file /admin/C…

Medium

CVE-2025-15049

A vulnerability was identified in code-projects Online Farm System 1.0. Affected is an unknown function of the file /add…

Medium

CVE-2025-14939

A vulnerability was found in code-projects Online Appointment Booking System 1.0. Impacted is an unknown function of the…