CVE-2025-6821 – Code-projects Inventory Management System SQL Injection Vulnerability

June 28, 2025

CVE ID : CVE-2025-6821

Published : June 28, 2025, 6:15 p.m. | 1 hour, 3 minutes ago

Description : A vulnerability was found in code-projects Inventory Management System 1.0. It has been classified as critical. This affects an unknown part of the file /php_action/createOrder.php. The manipulation leads to sql injection. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used.

Severity: 7.3 | HIGH

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleTsukimi is a third-party Emby client

Next Article CVE-2025-6820 – Code-projects Inventory Management System SQL Injection Vulnerability

Highlights

CVE-2025-5507 – TOTOLINK A3002RU Cross-Site Scripting Vulnerability

June 3, 2025

CVE ID : CVE-2025-5507

Published : June 3, 2025, 4:15 p.m. | 3 hours, 15 minutes ago

Description : A vulnerability was found in TOTOLINK A3002RU 2.1.1-B20230720.1011. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the component MAC Filtering Page. The manipulation of the argument Comment leads to cross site scripting. The attack can be launched remotely. The exploit has been disclosed to the public and may be used. The vendor was contacted early about this disclosure but did not respond in any way.

Severity: 2.4 | LOW

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

How AI further empowers value stream management

12 Top ReactJS Development Companies in 2025

Not sure where to go with AI? Here’s your roadmap.

This week in AI dev tools: A2A donated to Linux Foundation, OpenAI adds Deep Research to API, and more (June 27, 2025)

With Gears of War: Reloaded on the way, which Xbox 360 game would you like to see get rebuilt next? — Weekend discussion 💬

Capcom’s finally giving Street Fighter 6 players the outfits they’ve wanted — when all else fails, send in swimsuits

After 14 years, Monster Hunter Wilds is bringing back underwater combat alongside “Lagiacrus” and another familiar monster — the impossible has happened

OpenAI may prematurely declare AGI to cut ties with Microsoft — despite Sam Altman admitting today’s tech isn’t built for it

How Code Feedback MCP Enhances AI-Generated Code Quality

How Code Feedback MCP Enhances AI-Generated Code Quality

PRSS Site Creator – Create Blogs and Websites from Your Desktop

Say hello to ECMAScript 2025

With Gears of War: Reloaded on the way, which Xbox 360 game would you like to see get rebuilt next? — Weekend discussion 💬

With Gears of War: Reloaded on the way, which Xbox 360 game would you like to see get rebuilt next? — Weekend discussion 💬

Jasmine – web launcher and session management application

Schulrechner – calculator you know from school

CVE-2025-6821 – Code-projects Inventory Management System SQL Injection Vulnerability

⚡ Weekly Recap: Chrome 0-Day, 7.3 Tbps DDoS, MFA Bypass Tricks, Banking Trojan and More

China-linked Salt Typhoon Exploits Critical Cisco Vulnerability to Target Canadian Telecom

Google Launches Gemini 2.5 Pro I/O: Outperforms GPT-4 in Coding, Supports Native Video Understanding and Leads WebDev Arena

CVE-2025-6142 – Intera InHire Server-Side Request Forgery Vulnerability

CVE-2025-20188: Cisco Fixes 10.0-Rated Wireless Controller Flaw

CVE-2025-4585 – WordPress IRM Newsroom Stored Cross-Site Scripting Vulnerability

CVE-2025-5507 – TOTOLINK A3002RU Cross-Site Scripting Vulnerability

CVE-2025-20988 – Qualcomm Fingerprint Trustlet OOB Read Vulnerability

Delayed OnePlus Watch 3 launches again – but with a shocking price increase

Craft new mines in Minecraft to mine and craft more in the April Fool’s Day update you can actually play

CVE-2025-6821 – Code-projects Inventory Management System SQL Injection Vulnerability

Related Posts