CVE-2025-1200 | SourceCodester Best Church Management Software 1.1 slider_crud.php del_id sql injection

Inserito da Angelo Barbosa | Feb 10, 2025 | CVE

A vulnerability was found in SourceCodester Best Church Management Software 1.1. It has been declared as critical. This vulnerability affects unknown code of the file /admin/app/slider_crud.php. The manipulation of the argument del_id leads to sql injection.

This vulnerability was named CVE-2025-1200. The attack can be initiated remotely. Furthermore, there is an exploit available.

CVE-2025-1200 | SourceCodester Best Church Management Software 1.1 slider_crud.php del_id sql injection

Post correlati

CVE-2024-24794 | Imaging Data Commons libdicom 1.0.5 DICOM Element Parser parse_meta_sequence_end use after free (TALOS-2024-1931)

CVE-2024-4743 | LifterLMS Plugin up to 7.6.2 on WordPress Shortcode sql injection

CVE-2024-35643 | Xabier Miranda WP Back Button Plugin up to 1.1.3 on WordPress cross site scripting

CVE-2024-1993 | Icon Widget Plugin up to 1.3.0 on WordPress Shortcode cross site scripting