CVE-2025-9002 | Surbowl dormitory-management-php 1.0 login.php Account sql injection

Inserito da Angelo Barbosa | Ago 13, 2025 | CVE

A vulnerability classified as critical has been found in Surbowl dormitory-management-php 1.0. This affects an unknown part of the file login.php. The manipulation of the argument Account leads to sql injection. This vulnerability only affects products that are no longer supported by the maintainer.

This vulnerability is uniquely identified as CVE-2025-9002. It is possible to initiate the attack remotely. Furthermore, there is an exploit available.

CVE-2025-9002 | Surbowl dormitory-management-php 1.0 login.php Account sql injection

Post correlati

CVE-2024-31859 | Mattermost up to 8.1.12/9.5.3/9.6.1 Playbook access control

CVE-2025-40733 | Daily Expense Manager 1.0 /login.php Username cross site scripting

CVE-2024-51448 | IBM Robotic Process Automation up to 21.0.7.17/23.0.18 nssm.exe insecure inherited permissions

CVE-2024-0601 | ZhongFuCheng3y Austin 1.0 Email Message Template AustinFileUtils.java getRemoteUrl2File server-side request forgery