CVE-2025-0203 | code-projects Student Management System 1.0 /config/DbFunction.php showSubject1 sid sql injection

Inserito da Angelo Barbosa | Gen 3, 2025 | CVE

A vulnerability was found in code-projects Student Management System 1.0. It has been declared as critical. This vulnerability affects the function showSubject1 of the file /config/DbFunction.php. The manipulation of the argument sid leads to sql injection.

This vulnerability was named CVE-2025-0203. The attack can be initiated remotely. Furthermore, there is an exploit available.

Other parameters might be affected as well.

CVE-2025-0203 | code-projects Student Management System 1.0 /config/DbFunction.php showSubject1 sid sql injection

Post correlati

CVE-2023-50243 | LevelOne WBR-6013 RER4_A_v3411b_2T2R_LEV_09_170623 Realtek rtl819x Jungle SDK formIpQoS comment stack-based overflow (TALOS-2023-1895)

CVE-2024-11176 | M-Files Aino up to 24.9 calculation

CVE-2024-0416 | DeShang DSMall up to 6.1.0 MemberAuth.php file_name path traversal

CVE-2024-1111 | SourceCodester QR Code Login System 1.0 add-user.php qr-code cross site scripting