CVE-2025-13256 | projectworlds Advanced Library Management System 1.0 /borrow.php roll_number sql injection

Inserito da Angelo Barbosa | Nov 16, 2025 | CVE

A vulnerability was found in projectworlds Advanced Library Management System 1.0. It has been declared as critical. Impacted is an unknown function of the file /borrow.php. Executing manipulation of the argument roll_number can lead to sql injection.

This vulnerability is registered as CVE-2025-13256. It is possible to launch the attack remotely. Furthermore, an exploit is available.

CVE-2025-13256 | projectworlds Advanced Library Management System 1.0 /borrow.php roll_number sql injection

Post correlati

CVE-2024-1878 | SourceCodester Employee Management System 1.0 /myprofile.php id sql injection

CVE-2024-5142 | M-Files Hubshare prior 5.0.3.8 Social Module cross site scripting

CVE-2024-47093 | Nagvis up to 1.9.41 cross site scripting

CVE-2024-30192 | GS Plugins GS Pins for Pinterest Plugin up to 1.8.2 on WordPress cross site scripting