CVE-2025-7555 – “Code-projects Voting System SQL Injection Vulnerability”

July 14, 2025

CVE ID : CVE-2025-7555

Published : July 14, 2025, 1:15 a.m. | 1 hour, 23 minutes ago

Description : A vulnerability, which was classified as critical, has been found in code-projects Voting System 1.0. This issue affects some unknown processing of the file /admin/voters_add.php. The manipulation of the argument firstname/lastname leads to sql injection. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used.

Severity: 6.3 | MEDIUM

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-7556 – Code-projects Voting System SQL Injection Vulnerability

Next Article CVE-2025-7554 – Sapido RB-1802 Cross-Site Scripting Vulnerability

Highlights

CVE-2025-48488 – FreeScout Cross-Site Scripting (XSS) Vulnerability

May 30, 2025

CVE ID : CVE-2025-48488

Published : May 30, 2025, 7:15 a.m. | 2 hours, 21 minutes ago

Description : FreeScout is a free self-hosted help desk and shared mailbox. Prior to version 1.8.180, deleting the file .htaccess allows an attacker to upload an HTML file containing malicious JavaScript code to the server, which can result in a Cross-Site Scripting (XSS) vulnerability. This issue has been patched in version 1.8.180.

Severity: 0.0 | NA

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Akka introduces platform for distributed agentic AI

Design Patterns For AI Interfaces

Amazon launches spec-driven AI IDE, Kiro

This week in AI dev tools: Gemini API Batch Mode, Amazon SageMaker AI updates, and more (July 11, 2025)

ChatGPT falls for another Windows license key scam — generating valid codes in a guessing game after a researcher “gives up”

Germany wants Google and Apple to ban China’s “illegal” DeepSeek AI — after it failed to comply with data protection laws

Microsoft’s extra year of free Windows 10 security updates feels like a last-minute snooze button — while groups like “The Restart Project” still want to help users

The Xbox Ally and Xbox Ally X prices may have leaked — and if true, it’s not as bad as I thought

The details of TC39’s last meeting

The details of TC39’s last meeting

Modern async iteration in JavaScript with Array.fromAsync()

Vite vs Webpack: A Guide to Choosing the Right Bundler

LocalStack is a cloud service emulator

LocalStack is a cloud service emulator

Sysdig – dig deeper

minnow – simple and fairly weak chess engine

CVE-2025-7555 – “Code-projects Voting System SQL Injection Vulnerability”

Critical Cisco Vulnerability in Unified CM Grants Root Access via Static Credentials

Chinese Hackers Exploit Ivanti CSA Zero-Days in Attacks on French Government, Telecoms

Online Scrap Portal Using PHP and MySQL

Taylor Swift hacked, but denies naked pictures will be leaked

Adobe enhances developer productivity using Amazon Bedrock Knowledge Bases

Trump Administration’s Pro-Crypto Stance: A Paradigm Shift in Financial Innovation

CVE-2025-48488 – FreeScout Cross-Site Scripting (XSS) Vulnerability

sherpa-onnx is speech-to-text and text-to-speech software

Create Your Own Redux: Build a Custom State Management in React

CVE-2023-53129 – Linux Kernel – ext4 Directory Rename Deadlock Vulnerability

CVE-2025-7555 – “Code-projects Voting System SQL Injection Vulnerability”

Related Posts