CVE-2025-5977 – Code-projects School Fees Payment System SQL Injection Vulnerability

June 10, 2025

CVE ID : CVE-2025-5977

Published : June 10, 2025, 8:15 p.m. | 1 hour, 33 minutes ago

Description : A vulnerability was found in code-projects School Fees Payment System 1.0 and classified as critical. This issue affects some unknown processing of the file /datatable.php. The manipulation of the argument sSortDir_0 leads to sql injection. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used.

Severity: 7.3 | HIGH

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-5976 – PHPGurukul Rail Pass Management System Cross Site Scripting Vulnerability

Next Article CVE-2025-5975 – PHPGurukul Rail Pass Management System Cross Site Scripting Vulnerability

Highlights

CVE-2024-56158 – XWiki Oracle SQL Injection Vulnerability

June 12, 2025

CVE ID : CVE-2024-56158

Published : June 12, 2025, 3:15 p.m. | 45 minutes ago

Description : XWiki is a generic wiki platform. It’s possible to execute any SQL query in Oracle by using the function like DBMS_XMLGEN or DBMS_XMLQUERY. The XWiki query validator does not sanitize functions that would be used in a simple select and Hibernate allows using any native function in an HQL query. This vulnerability is fixed in 16.10.2, 16.4.7, and 15.10.16.

Severity: 0.0 | NA

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

How To Prevent WordPress SQL Injection Attacks

This week in AI dev tools: Apple’s Foundations Model framework, Mistral’s first reasoning model, and more (June 13, 2025)

Open Talent platforms emerging to match skilled workers to needs, study finds

Java never goes out of style: Celebrating 30 years of the language

The 5 gadgets that got me through marathons and obstacle races (and why they work)

This beastly 500W charger replaced every other charger I had – with six ports to boot

Mac Mini won’t power on? Apple will fix it for you – for free

Why I’m switching to VS Code. Hint: It’s all about AI tool integration

From Concept to Code: Final Year PHP Projects with Reports for Smart Submissions

From Concept to Code: Final Year PHP Projects with Reports for Smart Submissions

Building Construction suppliers in India

Neutralinojs v6.1 released

Microsoft Edge’s Quiet Shift to AVIF: Why It Matters

Microsoft Edge’s Quiet Shift to AVIF: Why It Matters

Windows 11 test builds are accidentally playing the Windows Vista startup sound

Leaked: ROG Xbox Ally and Xbox Ally X pre-orders set for August, launch in October

CVE-2025-5977 – Code-projects School Fees Payment System SQL Injection Vulnerability

⚡ Weekly Recap: iPhone Spyware, Microsoft 0-Day, TokenBreak Hack, AI Data Leaks and More

46,000+ Grafana Instances Exposed to Malicious Account Takeover Attacks

Gradia is a Slick New Screenshot Annotation Tool for Linux

CVE-2025-2745 – AVEVA PI Web API Cross-Site Scripting (XSS) Vulnerability

CVE-2025-22476 – Dell Storage Center Dell Storage Manager Command Injection

It’s been a massive week for the AI copyright debate

CVE-2024-56158 – XWiki Oracle SQL Injection Vulnerability

CVE-2024-38824 – Apache HTTP Server File Write

Build Beauty Test AI product and Design UI

May 2025: All AI updates from the past month

CVE-2025-5977 – Code-projects School Fees Payment System SQL Injection Vulnerability

Related Posts