CVE-2025-5979 – Code-projects School Fees Payment System SQL Injection Vulnerability

June 10, 2025

CVE ID : CVE-2025-5979

Published : June 10, 2025, 9:15 p.m. | 33 minutes ago

Description : A vulnerability classified as critical has been found in code-projects School Fees Payment System 1.0. This affects an unknown part of the file /branch.php. The manipulation of the argument ID leads to sql injection. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used.

Severity: 7.3 | HIGH

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-5978 – Tenda FH1202 Stack-Based Buffer Overflow Vulnerability

Next Article CVE-2025-5976 – PHPGurukul Rail Pass Management System Cross Site Scripting Vulnerability

Highlights

CVE-2025-3616 – Greenshift WordPress Animation and Page Builder Blocks Unvalidated File Upload Vulnerability

April 22, 2025

CVE ID : CVE-2025-3616

Published : April 22, 2025, 5:15 a.m. | 37 minutes ago

Description : The Greenshift – animation and page builder blocks plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in the gspb_make_proxy_api_request() function in versions 11.4 to 11.4.5. This makes it possible for authenticated attackers, with Subscriber-level access and above, to upload arbitrary files on the affected site’s server which may make remote code execution possible. The arbitrary file upload was sufficiently patched in 11.4.5, but a capability check was added in 11.4.6 to properly prevent unauthorized limited file uploads.

Severity: 8.8 | HIGH

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

From Data To Decisions: UX Strategies For Real-Time Dashboards

Honeycomb launches AI observability suite for developers

Low-Code vs No-Code Platforms for Node.js: What CTOs Must Know Before Investing

ServiceNow unveils Zurich AI platform

DistroWatch Weekly, Issue 1139

Building personal apps with open source and AI

What Can We Actually Do With corner-shape?

Craft, Clarity, and Care: The Story and Work of Mengchu Yao

Optimizely Mission Control – Part III

Optimizely Mission Control – Part III

Learning from PHP Log to File Example

Online EMI Calculator using PHP – Calculate Loan EMI, Interest, and Amortization Schedule

DistroWatch Weekly, Issue 1139

DistroWatch Weekly, Issue 1139

sudo vs sudo-rs: What You Need to Know About the Rust Takeover of Classic Sudo Command

Dmitry — The Deep Magic

CVE-2025-5979 – Code-projects School Fees Payment System SQL Injection Vulnerability

Cursor AI Code Editor Flaw Enables Silent Code Execution via Malicious Repositories

Introducing HybridPetya: Petya/NotPetya copycat with UEFI Secure Boot bypass

Stimulator keeps your computer awake

CVE-2025-50740 – AutoConnect Arduino Library XSS Vulnerability

CVE-2025-6320 – PHPGurukul Pre-School Enrollment System SQL Injection

CVE-2025-4527 – Dígitro NGC Explorer Remote Code Execution Vulnerability

CVE-2025-3616 – Greenshift WordPress Animation and Page Builder Blocks Unvalidated File Upload Vulnerability

Linux-Based Lenovo Webcams’ Flaw Can Be Remotely Exploited for BadUSB Attacks

Microsoft makes Windows 10 security updates FREE for an extra year — but there’s a catch, and you might not like it

CVE-2025-23395 – Screen Root Privilege Escalation Vulnerability

CVE-2025-5979 – Code-projects School Fees Payment System SQL Injection Vulnerability

Related Posts