CVE-2025-13241 | code-projects Student Information System 2.0 /index.php Username sql injection

Inserito da Angelo Barbosa | Nov 15, 2025 | CVE

A vulnerability labeled as critical has been found in code-projects Student Information System 2.0. This vulnerability affects unknown code of the file /index.php. Executing manipulation of the argument Username can lead to sql injection.

This vulnerability is handled as CVE-2025-13241. The attack can be executed remotely. Additionally, an exploit exists.

CVE-2025-13241 | code-projects Student Information System 2.0 /index.php Username sql injection

Post correlati

CVE-2024-25097 | TNC PDF Viewer up to 2.8.0 on WordPress Shortcode cross site scripting

CVE-2024-28249 | Cilium up to 1.13.12/1.14.7/1.15.1 IPsec missing encryption (GHSA-j89h-qrvr-xc36)

CVE-2024-13490 | enituretechnology LTL Freight Quotes Plugin up to 4.3.7 on WordPress edit_id/dropship_edit_id sql injection

CVE-2024-7917 | DouPHP 1.7 Release 20220822 Favicon /admin/system.php site_favicon unrestricted upload