CVE-2025-6822 – Code-projects Inventory Management System SQL Injection Vulnerability

June 28, 2025

CVE ID : CVE-2025-6822

Published : June 28, 2025, 7:15 p.m. | 3 hours, 21 minutes ago

Description : A vulnerability was found in code-projects Inventory Management System 1.0. It has been declared as critical. This vulnerability affects unknown code of the file /php_action/removeProduct.php. The manipulation of the argument productId leads to sql injection. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used.

Severity: 7.3 | HIGH

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-6823 – Code-projects Inventory Management System SQL Injection Vulnerability

Next Article CVE-2025-32897 – Apache Seata (incubating) Untrusted Data Deserialization Vulnerability

Highlights

CVE-2025-54077 – WeGIA Reflected Cross-Site Scripting (XSS) Vulnerability

July 18, 2025

CVE ID : CVE-2025-54077

Published : July 18, 2025, 4:15 p.m. | 1 hour, 3 minutes ago

Description : WeGIA is an open source web manager with a focus on the Portuguese language and charitable institutions. A Reflected Cross-Site Scripting (XSS) vulnerability was identified in versions prior to 3.4.6 in the `personalizacao.php` endpoint of the WeGIA application. This vulnerability allows attackers to inject malicious scripts in the `err` parameter. Version 3.4.6 fixes the issue.

Severity: 6.5 | MEDIUM

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

CVE-2025-48920 – Drupal etracker Cross-Site Scripting (XSS)

June 13, 2025

A Coding Implementation with Arcade: Integrating Gemini Developer API Tools into LangGraph Agents for Autonomous AI Workflows

April 26, 2025

Can you get HEVC codec for free on Windows 11?

July 16, 2025

GitHub’s CEO Thomas Dohmke steps down, triggering tighter integration of company within Microsoft

bitHuman launches SDK for creating AI avatars

Designing With AI, Not Around It: Practical Advanced Techniques For Product Design Use Cases

Why Companies Are Investing in AI-Powered React.js Development Services in 2025

I found a Google Maps alternative that won’t track you or drain your battery – and it’s free

I tested this new AI podcast tool to see if it can beat NotebookLM – here’s how it did

Microsoft’s new update makes your taskbar a productivity hub – here’s how

Save $50 on the OnePlus Pad 3 plus get a free gift – here’s the deal

Laravel Global Scopes: Automatic Query Filtering

Laravel Global Scopes: Automatic Query Filtering

Building MCP Servers in PHP

Filament v4 is Stable!

I Asked OpenAI’s New Open-Source AI Model to Complete a Children’s School Test — Is It Smarter Than a 10-Year-Old?

I Asked OpenAI’s New Open-Source AI Model to Complete a Children’s School Test — Is It Smarter Than a 10-Year-Old?

Madden NFL 26 Leads This Week’s Xbox Drops—But Don’t Miss These Hidden Gems

ASUS G14 Bulked Up for 2025—Still Sexy, Just a Bit Chonkier

CVE-2025-6822 – Code-projects Inventory Management System SQL Injection Vulnerability

Update WinRAR tools now: RomCom and others exploiting zero-day vulnerability

WinRAR zero-day exploited in espionage attacks against high-value targets

Want a free VPN? How to use ProtonVPN on Android without having to pay

🎮 Top PC Games Under 4 GB That Run Smoothly on Any System

CVE-2025-46708 – VMware ESXi GPU Resource Hijacking

CVE-2025-54365 – Fastapi-Guard Regular Expression ReDoS Bypass

CVE-2025-54077 – WeGIA Reflected Cross-Site Scripting (XSS) Vulnerability

CVE-2025-48920 – Drupal etracker Cross-Site Scripting (XSS)

A Coding Implementation with Arcade: Integrating Gemini Developer API Tools into LangGraph Agents for Autonomous AI Workflows

Can you get HEVC codec for free on Windows 11?

CVE-2025-6822 – Code-projects Inventory Management System SQL Injection Vulnerability

Related Posts