CVE-2025-4456 | Project Worlds Car Rental Project 1.0 /signup.php fname sql injection

Inserito da Angelo Barbosa | Mag 8, 2025 | CVE

A vulnerability classified as critical has been found in Project Worlds Car Rental Project 1.0. Affected is an unknown function of the file /signup.php. The manipulation of the argument fname leads to sql injection.

This vulnerability is traded as CVE-2025-4456. It is possible to launch the attack remotely. Furthermore, there is an exploit available.

Other parameters might be affected as well.

CVE-2025-4456 | Project Worlds Car Rental Project 1.0 /signup.php fname sql injection

Post correlati

CVE-2025-21103 | Dell NetWorker Management Console up to 19.10.0.6/19.11.0.3 neutralization of directives (dsa-2025-095)

CVE-2025-47154 | Ladybird LibJS arguments_list missing synchronization

CVE-2023-50232 | Inductive Automation Ignition getParams argument injection

CVE-2024-0543 | CodeAstro Real Estate Management System up to 1.0 propertydetail.php pid sql injection