CVE-2025-5213 – Projectworlds Responsive E-Learning System SQL Injection Vulnerability

May 26, 2025

CVE ID : CVE-2025-5213

Published : May 27, 2025, 12:15 a.m. | 42 minutes ago

Description : A vulnerability was found in projectworlds Responsive E-Learning System 1.0. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /admin/delete_file.php. The manipulation of the argument ID leads to sql injection. The attack can be launched remotely. The exploit has been disclosed to the public and may be used.

Severity: 7.3 | HIGH

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-5214 – Kashipara Responsive Online Learning Platform SQL Injection Vulnerability

Next Article CVE-2025-4783 – Elementor Exclusive Addons WordPress Stored Cross-Site Scripting Vulnerability

Highlights

CVE-2025-6002 – VirtueMart Unrestricted File Upload Vulnerability

June 11, 2025

CVE ID : CVE-2025-6002

Published : June 11, 2025, 5:15 p.m. | 3 hours, 13 minutes ago

Description : An unrestricted file upload vulnerability exists in the Product Image section of the VirtueMart backend. Authenticated attackers can upload files with arbitrary extensions, including executable or malicious files, potentially leading to remote code execution or other security impacts depending on server configuration.

Severity: 7.2 | HIGH

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Top 10 Use Cases of Vibe Coding in Large-Scale Node.js Applications

Cloudsmith launches ML Model Registry to provide a single source of truth for AI models and datasets

Kong Acquires OpenMeter to Unlock AI and API Monetization for the Agentic Era

Microsoft Graph CLI to be retired

5 tips for writing better custom instructions for Copilot

More than €1.2 billion raised by EIC Scaling Club members

7 Must-Know GSAP Animation Tips for Creative Developers

CodeSOD: Adding to the Argument

Laracon AU 2025 Talk Titles Revealed

Laracon AU 2025 Talk Titles Revealed

Stop Writing Bad Controllers: Laravel Custom Collections Transform Your Code

Handle ownership relationships between Eloquent models with Laravel Ownable

Lenovo Legion Go 2 confirmed with Ryzen Z2 Extreme, 1200p OLED 144Hz display & 74Wh battery

Lenovo Legion Go 2 confirmed with Ryzen Z2 Extreme, 1200p OLED 144Hz display & 74Wh battery

How to Open Ports in Firewall on Windows Server

Google TV Remote Not Working? 5 Quick Fixes

CVE-2025-5213 – Projectworlds Responsive E-Learning System SQL Injection Vulnerability

Malicious npm Package nodejs-smtp Mimics Nodemailer, Targets Atomic and Exodus Wallets

Silver Fox Exploits Microsoft-Signed WatchDog Driver to Deploy ValleyRAT Malware

Elevating Outcomes with AI: Highlights from Agentforce Denver 2025

CVE-2025-44175 – “Tenda AC10 Buffer Overflow Vulnerability”

LangSmith Bug Could Expose OpenAI Keys and User Data via Malicious Agents

I’ve used the Samsung Galaxy S25 Ultra for 6 months – here’s my verdict now

CVE-2025-6002 – VirtueMart Unrestricted File Upload Vulnerability

CVE-2025-51606 – Hippo4J JWT Secret Key Hard-Coded Vulnerability

Real-Time Observability for Node.js – Without Code Changes

CVE-2025-47668 – CookieCode Stored Cross-Site Scripting Vulnerability

CVE-2025-5213 – Projectworlds Responsive E-Learning System SQL Injection Vulnerability

Related Posts