CVE-2025-12609 | CodeAstro Gym Management System 1.0 update-progress.php id/ini_weight sql injection

Inserito da Angelo Barbosa | Nov 2, 2025 | CVE

A vulnerability classified as critical has been found in CodeAstro Gym Management System 1.0. Affected by this issue is some unknown functionality of the file /admin/update-progress.php. Performing manipulation of the argument id/ini_weight results in sql injection.

This vulnerability was named CVE-2025-12609. The attack may be initiated remotely. In addition, an exploit is available.

CVE-2025-12609 | CodeAstro Gym Management System 1.0 update-progress.php id/ini_weight sql injection

Post correlati

CVE-2025-4445 | D-Link DIR-605L 2.13B01 wake_on_lan mac command injection

CVE-2024-51489 | Ampache up to 7.0.0 Request cross-site request forgery

CVE-2024-33073 | Qualcomm Snapdragon Auto up to X75 5G Modem-RF System ML IE BSS buffer over-read

CVE-2024-12230 | PHPGurukul Complaint Management System 1.0 /admin/subcategory.php category sql injection