CVE-2025-6474 – Code-projects Inventory Management System SQL Injection Vulnerability

June 22, 2025

CVE ID : CVE-2025-6474

Published : June 22, 2025, 12:15 p.m. | 1 hour, 28 minutes ago

Description : A vulnerability has been found in code-projects Inventory Management System 1.0 and classified as critical. This vulnerability affects unknown code of the file /changeUsername.php. The manipulation of the argument user_id leads to sql injection. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used.

Severity: 7.3 | HIGH

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-6475 – “SourceCodester Student Result Management System Cross Site Scripting Vulnerability”

Next Article CVE-2025-6473 – School Fees Payment System Cross-Site Scripting Vulnerability

Elastic simplifies log analytics for SREs and developers with launch of Log Essentials

OpenAI launches GPT-5

Melissa brings its data quality solutions to Azure with new SSIS integration

Automating Design Systems: Tips And Resources For Getting Started

This $180 mini projector has no business being this good for the price

GPT-5 is finally here, and you can access it for free today – no subscription needed

Changing this Android setting instantly doubled my phone speed (Samsung and Google models included)

ChatGPT can now talk nerdy to you – plus more personalities and other upgrades beyond GPT-5

Advanced Application Architecture through Laravel’s Service Container Management

Advanced Application Architecture through Laravel’s Service Container Management

Switch Between Personas in Laravel With the MultiPersona Package

AI-Driven Smart Tagging and Metadata in AEM Assets

Bill Gates on AI’s Impact: ‘Be Curious, Read, and Use the Latest Tools’

Bill Gates on AI’s Impact: ‘Be Curious, Read, and Use the Latest Tools’

Halo Infinite’s Fall Update: New Features and Modes to Revive the Game?

Forza Motorsport’s Future in Jeopardy: Fans Demand Clarity from Microsoft

CVE-2025-6474 – Code-projects Inventory Management System SQL Injection Vulnerability

Microsoft to Pull Plug on Shared EWS Access in Hybrid Exchange by October

Google Confirms Salesforce Database Breach by ShinyHunters Group

CVE-2025-54802 – “pyLoad Path Traversal RCE”

Microsoft says AI agents will make every employee an “agent boss” — after Bill Gates claimed AI will replace humans in most jobs

US and China agree to pause most tariffs for 90 days — how will this affect tech prices?

CVE-2025-41235 – Spring Cloud Gateway Server Untrusted Proxy Header Manipulation Vulnerability

High-Severity DoS Vulnerability Found in PowerDNS DNSdist (CVE-2025-30194)

TUXEDO Stellaris 16 Gen7: il nuovo laptop GNU/Linux con 128 GB di RAM e schermo HDR

Elizabeth Goodspeed on the rise of the designer as influencer

How Web Services Work – The Unseen Engines of the Connected World

CVE-2025-6474 – Code-projects Inventory Management System SQL Injection Vulnerability

Related Posts