CVE-2025-11605 | code-projects Client Details System 1.0 update-profile.php uid sql injection

Inserito da Angelo Barbosa | Ott 10, 2025 | CVE

A vulnerability was found in code-projects Client Details System 1.0 and classified as critical. Impacted is an unknown function of the file /admin/update-profile.php. Such manipulation of the argument uid leads to sql injection.

This vulnerability is documented as CVE-2025-11605. The attack can be executed remotely. Additionally, an exploit exists.

CVE-2025-11605 | code-projects Client Details System 1.0 update-profile.php uid sql injection

Post correlati

CVE-2023-43516 | Qualcomm WSA8835 Message memory corruption

CVE-2025-38516 | Linux Kernel up to 6.15.6 pinctrl denial of service (EUVD-2025-25082)

CVE-2024-29725 | SportsNET 4.0.1 /app/ax/sort_bloques/ list sql injection

CVE-2025-0801 | ratemyagent RateMyAgent Official Plugin up to 1.4.0 on WordPress Setting rma-settings-wizard cross-site request forgery