CVE-2025-5003 | projectworlds Online Time Table Generator 1.0 /semester_ajax.php ID sql injection

Inserito da Angelo Barbosa | Mag 20, 2025 | CVE

A vulnerability has been found in projectworlds Online Time Table Generator 1.0 and classified as critical. This vulnerability affects unknown code of the file /semester_ajax.php. The manipulation of the argument ID leads to sql injection.

This vulnerability was named CVE-2025-5003. The attack can be initiated remotely. Furthermore, there is an exploit available.

CVE-2025-5003 | projectworlds Online Time Table Generator 1.0 /semester_ajax.php ID sql injection

Post correlati

CVE-2024-50255 | Linux Kernel up to 6.1.115/6.6.59/6.11.6 __hci_cmd_sync_sk null pointer dereference

CVE-2023-42943 | Apple macOS up to 13.x Location Data information disclosure

CVE-2024-4838 | ConvertPlus Plugin up to 3.5.26 on WordPress code injection

CVE-2022-45850 | Nickys Image Map Pro Plugin up to 5.6.8 on WordPress cross-site request forgery