CVE-2025-6471 – Code-projects Online Bidding System SQL Injection Vulnerability

June 22, 2025

CVE ID : CVE-2025-6471

Published : June 22, 2025, 10:15 a.m. | 3 hours, 28 minutes ago

Description : A vulnerability classified as critical was found in code-projects Online Bidding System 1.0. Affected by this vulnerability is an unknown functionality of the file /administrator. The manipulation of the argument aduser leads to sql injection. The attack can be launched remotely. The exploit has been disclosed to the public and may be used.

Severity: 7.3 | HIGH

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-6472 – Code-projects Online Bidding System SQL Injection Vulnerability

Next Article CVE-2025-6470 – Code-projects Online Bidding System SQL Injection Vulnerability

CodeSOD: Across the 4th Dimension

Cursor vs GitHub Copilot (2025): Which AI Platform Wins for Your Node.js Dev Team?

NuGet adds support for Trusted Publishing

AWS launches IDE extension for building browser automation agents

Distribution Release: Kali Linux 2025.3

Distribution Release: SysLinuxOS 13

Development Release: MX Linux 25 Beta 1

DistroWatch Weekly, Issue 1140

Beyond Denial: How AI Concierge Services Can Transform Healthcare from Reactive to Proactive

Beyond Denial: How AI Concierge Services Can Transform Healthcare from Reactive to Proactive

IDC ServiceScape for Microsoft Power Apps Low-Code/No-Code Custom Application Development Services

A Stream-Oriented UI library for interactive web applications

FOSS Weekly #25.39: Kill Switch Phones, LMDE 7, Zorin OS 18 Beta, Polybar, Apt History and More Linux Stuff

FOSS Weekly #25.39: Kill Switch Phones, LMDE 7, Zorin OS 18 Beta, Polybar, Apt History and More Linux Stuff

Distribution Release: Kali Linux 2025.3

Distribution Release: SysLinuxOS 13

CVE-2025-6471 – Code-projects Online Bidding System SQL Injection Vulnerability

Cursor AI Code Editor Flaw Enables Silent Code Execution via Malicious Repositories

Introducing HybridPetya: Petya/NotPetya copycat with UEFI Secure Boot bypass

CVE-2025-7470 – Campcodes Sales and Inventory System Remote File Upload Vulnerability

SteelSeries’ latest wireless mouse is cheap and colorful — but is this the one to spend your money on?

CVE-2025-53882 – “OpenSUSE Mailman3 Logrotate Untrusted Input Escalation”

I had a blast playing LEGO Party! at Summer Game Fest 2025, and I’m looking forward to this zany family game later this year

Can I use React Server Components (RSCs) today?

CVE-2025-49824 – Conda-Smithy Oracle Padding Attack

Microsoft sees its carbon emissions soar on a 168% glut in AI energy demand, “we recognize that we must also bring more carbon-free electricity onto the grids.”

CVE-2025-49823 – Anaconda Constructor Command Injection Vulnerability

CVE-2025-6471 – Code-projects Online Bidding System SQL Injection Vulnerability

Related Posts