CVE-2025-6346 – SourceCodester Advance Charity Management System SQL Injection Vulnerability

June 20, 2025

CVE ID : CVE-2025-6346

Published : June 20, 2025, 3:15 p.m. | 2 hours, 9 minutes ago

Description : A vulnerability was found in SourceCodester Advance Charity Management System 1.0. It has been classified as critical. This affects an unknown part of the file /members/fundDetails.php. The manipulation of the argument m06 leads to sql injection. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used.

Severity: 6.3 | MEDIUM

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-44203 – HotelDruid SQL Injection and DoS Vulnerability

Next Article CVE-2025-6345 – SourceCodester My Food Recipe Cross Site Scripting Vulnerability

Highlights

CVE-2024-13940 – Ninja Forms Webhooks SSRF Vulnerability

May 14, 2025

CVE ID : CVE-2024-13940

Published : May 14, 2025, 9:15 a.m. | 2 hours, 52 minutes ago

Description : The Ninja Forms Webhooks plugin for WordPress is vulnerable to Server-Side Request Forgery in all versions up to, and including, 3.0.7 via the form webhook functionality. This makes it possible for authenticated attackers, with Administrator-level access and above, to make web requests to arbitrary locations originating from the web application and can be used to query and modify information from internal services.

Severity: 5.5 | MEDIUM

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Error’d: You Talkin’ to Me?

The Psychology Of Trust In AI: A Guide To Measuring And Designing For User Confidence

This week in AI updates: OpenAI Codex updates, Claude integration in Xcode 26, and more (September 19, 2025)

Report: The major factors driving employee disengagement in 2025

Development Release: Zorin OS 18 Beta

Distribution Release: IPFire 2.29 Core 197

Development Release: Ubuntu 25.10 Beta

Development Release: Linux Mint 7 Beta “LMDE”

The attack on the npm ecosystem continues

The attack on the npm ecosystem continues

Feature Highlight

SVAR React Core – New UI Library with 20+ Components

Hyprland Made Easy: Preconfigured Beautiful Distros

Hyprland Made Easy: Preconfigured Beautiful Distros

Development Release: Zorin OS 18 Beta

Distribution Release: IPFire 2.29 Core 197

CVE-2025-6346 – SourceCodester Advance Charity Management System SQL Injection Vulnerability

Cursor AI Code Editor Flaw Enables Silent Code Execution via Malicious Repositories

Introducing HybridPetya: Petya/NotPetya copycat with UEFI Secure Boot bypass

Happy 10th birthday, Windows 10! Hoo boy, it’s been a journey

PoC exploit for SysAid pre-auth RCE released, upgrade quickly!

CVE-2025-1627 – Qi Blocks WordPress Stored Cross-Site Scripting Vulnerability

Xbox and Microsoft reveal global price increases for consoles, accessories — and even games

CVE-2024-13940 – Ninja Forms Webhooks SSRF Vulnerability

CVE-2018-1359 – Apache HTTP Server Authentication Bypass

CVE-2025-6286 – PHPGurukul COVID19 Testing Management System Open Redirect Vulnerability

A week of hell with my Windows 11 PC really makes me appreciate the simplicity of Google’s Chromebook laptops

CVE-2025-6346 – SourceCodester Advance Charity Management System SQL Injection Vulnerability

Related Posts