CVE-2025-12597 | SourceCodester Best House Rental Management System 1.0 /admin_class.php save_category Name sql injection

Inserito da Angelo Barbosa | Nov 1, 2025 | CVE

A vulnerability, which was classified as critical, has been found in SourceCodester Best House Rental Management System 1.0. Affected by this vulnerability is the function save_category of the file /admin_class.php. Performing manipulation of the argument Name results in sql injection.

This vulnerability is identified as CVE-2025-12597. The attack can be initiated remotely. Additionally, an exploit exists.

CVE-2025-12597 | SourceCodester Best House Rental Management System 1.0 /admin_class.php save_category Name sql injection

Post correlati

CVE-2025-1154 | xxyopen Novel up to 3.4.1 /api/front/search/books sort sql injection

CVE-2024-51540 | Dell ECS up to 3.8.1.2 Retention Period integer overflow (dsa-2024-483)

CVE-2025-1252 | RTI Connext Professional up to 7.4.x Core Libraries heap-based overflow

CVE-2024-24307 | Product Designer Module prior 1.178.36 on PrestaShop ajaxProcessCropImage path traversal