CVE-2025-8500 – Code-projects Human Resource Integrated System SQL Injection Vulnerability

August 3, 2025

CVE ID : CVE-2025-8500

Published : Aug. 3, 2025, 5:15 a.m. | 18 hours, 22 minutes ago

Description : A vulnerability was found in code-projects Human Resource Integrated System 1.0. It has been rated as critical. This issue affects some unknown processing of the file /insert-and-view/action.php. The manipulation of the argument content leads to sql injection. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used.

Severity: 6.3 | MEDIUM

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-8501 – Human Resource Integrated System Cross-Site Scripting Vulnerability

Next Article CVE-2025-8499 – Code-Projects Online Medicine Guide SQL Injection Vulnerability

Highlights

CVE-2025-5182 – “Summer Pearl Group Vacation Rental Management Platform Listing Handler Authorization Bypass”

May 26, 2025

CVE ID : CVE-2025-5182

Published : May 26, 2025, 11:15 a.m. | 52 minutes ago

Description : A vulnerability has been found in Summer Pearl Group Vacation Rental Management Platform up to 1.0.1 and classified as critical. This vulnerability affects unknown code of the component Listing Handler. The manipulation leads to authorization bypass. The attack can be initiated remotely. Upgrading to version 1.0.2 is able to address this issue. It is recommended to upgrade the affected component.

Severity: 4.3 | MEDIUM

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

React.js for SaaS Platforms: How Top Development Teams Help Startups Launch Faster

Upwork Freelancers vs Dedicated React.js Teams: What’s Better for Your Project in 2025?

Is Agile dead in the age of AI?

Top 15 Enterprise Use Cases That Justify Hiring Node.js Developers in 2025

Unplugging these 7 common household devices helped reduce my electricity bills

DistroWatch Weekly, Issue 1133

Anthropic beats OpenAI as the top LLM provider for business – and it’s not even close

I bought Samsung’s Galaxy Watch Ultra 2025 – here’s why I have buyer’s remorse

The details of TC39’s last meeting

The details of TC39’s last meeting

Enhancing Laravel Queries with Reusable Scope Patterns

Everything We Know About Livewire 4

DistroWatch Weekly, Issue 1133

DistroWatch Weekly, Issue 1133

Newelle, a ‘Virtual Assistant’ for GNOME, Hits Version 1.0

Bustle – visualize D-Bus activity

CVE-2025-8500 – Code-projects Human Resource Integrated System SQL Injection Vulnerability

CVE-2025-6754 – “WordPress SEO Metrics Privilege Escalation”

CVE-2025-7710 – “Brave Conversion Engine WordPress Facebook Authentication Bypass”

Hash-o-matic – generate, compares and verify MD5, SHA-256 and SHA-1 hashes

Fake AI Tools Used to Spread Noodlophile Malware, Targeting 62,000+ via Facebook Lures

CVE-2025-31189 – Apple macOS Sandbox Escalation

CVE-2025-53558 – ZTE Japan K.K. ZXHN-F660T/F660A Default Credential Vulnerability

CVE-2025-5182 – “Summer Pearl Group Vacation Rental Management Platform Listing Handler Authorization Bypass”

CVE-2025-7902 – Yangzongzhuan RuoYi Cross-Site Scripting Vulnerability

The Business Impact of AI-Powered Predictive Maintenance in 2025🔧

Never Tell me The Odds Shirt

CVE-2025-8500 – Code-projects Human Resource Integrated System SQL Injection Vulnerability

Related Posts