CVE-2025-8438 | code-projects Wazifa System 1.0 postpublish.php post sql injection

Inserito da Angelo Barbosa | Lug 31, 2025 | CVE

A vulnerability classified as critical was found in code-projects Wazifa System 1.0. This vulnerability affects unknown code of the file /controllers/postpublish.php. The manipulation of the argument post leads to sql injection.

This vulnerability was named CVE-2025-8438. The attack can be initiated remotely. Furthermore, there is an exploit available.

CVE-2025-8438 | code-projects Wazifa System 1.0 postpublish.php post sql injection

Post correlati

CVE-2024-28805 | Italtel i-MCS NFV 12.1.0-20211215 access control

CVE-2024-13378 | GravityForms Plugin 2.9.0.1/2.9.1.3 on WordPress style_settings cross site scripting

CVE-2024-3468 | AVEVA PI Web API prior 2023 SP1 API XML Import deserialization (icsa-24-163-02)

CVE-2025-5252 | PHPGurukul News Portal Project 4.1 /admin/edit-subadmin.php emailid sql injection