CVE-2025-70152 | code-projects Project Scholars Tracking System 1.0 Endpoint /admin/save_user.php firstname/lastname/username/password/user_id sql injection

Inserito da Angelo Barbosa | Feb 18, 2026 | CVE

A vulnerability was found in code-projects Project Scholars Tracking System 1.0. It has been declared as critical. This vulnerability affects unknown code of the file /admin/save_user.php of the component Endpoint. Such manipulation of the argument firstname/lastname/username/password/user_id leads to sql injection.

This vulnerability is documented as CVE-2025-70152. The attack can be executed remotely. There is not any exploit available.

CVE-2025-70152 | code-projects Project Scholars Tracking System 1.0 Endpoint /admin/save_user.php firstname/lastname/username/password/user_id sql injection

Post correlati

CVE-2024-32030 | provectus kafka-ui up to 0.7.1 deserialization (GHSL-2023-229)

CVE-2025-48811 | Microsoft

CVE-2024-10382 | Google Android Car App Android Jetpack Library deserialization

CVE-2024-28832 | Checkmk up to 2.0.0p39/2.1.0p44/2.2.0p27/2.3.0p6 Crash Report Page cross site scripting