CVE-2025-12237 | projectworlds Advanced Library Management System 1.0 /index.php keywords sql injection

Inserito da Angelo Barbosa | Ott 25, 2025 | CVE

A vulnerability labeled as critical has been found in projectworlds Advanced Library Management System 1.0. Impacted is an unknown function of the file /index.php. Such manipulation of the argument keywords leads to sql injection.

This vulnerability is documented as CVE-2025-12237. The attack can be executed remotely. Additionally, an exploit exists.

CVE-2025-12237 | projectworlds Advanced Library Management System 1.0 /index.php keywords sql injection

Post correlati

CVE-2024-6772 | Google Chrome up to 126.0.6478.126 V8 out-of-bounds (ID 346597)

CVE-2023-7083 | Voting Record Plugin up to 2.0 on WordPress Setting cross-site request forgery

CVE-2025-8836 | JasPer up to 4.2.5 JPEG2000 Encoder jpc_enc.c jpc_floorlog2 assertion (Issue 401)

CVE-2025-1067 | ESRI ArcGIS Pro up to 3.3.2/3.4.0 permission assignment