CVE-2025-13572 | projectworlds Advanced Library Management System 1.0 /delete_admin.php admin_id sql injection

Inserito da Angelo Barbosa | Nov 23, 2025 | CVE

A vulnerability identified as critical has been detected in projectworlds Advanced Library Management System 1.0. This affects an unknown part of the file /delete_admin.php. The manipulation of the argument admin_id leads to sql injection.

This vulnerability is referenced as CVE-2025-13572. Remote exploitation of the attack is possible. Furthermore, an exploit is available.

CVE-2025-13572 | projectworlds Advanced Library Management System 1.0 /delete_admin.php admin_id sql injection

Post correlati

CVE-2024-47438 | Adobe Substance3D Painter up to 10.1.0 write-what-where condition (apsb24-86)

CVE-2024-47831 | vercel next.js up to 14.2.6 recursion (GHSA-g77x-44xx-532m)

CVE-2024-12347 | Guangzhou Huayi Intelligent Technology Jeewms up to 1.0.0 Druid Monitoring Interface index.html improper authorization

CVE-2025-8746 | GNU libopts up to 27.6 __strstr_sse2 memory corruption (Issue 957)