CVE 6.9 MEDIUM

code-projects Online Medicine Guide addelidetails.php sql injection_CVE-2025-8809

August 10, 2025 invoker category_cve

6.9 / 10

MEDIUM

CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P

Description

A vulnerability classified as critical has been found in code-projects Online Medicine Guide 1.0. Affected is an unknown function of the file /addelidetails.php. The manipulation of the argument del leads to sql injection. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used.

AI Analysis

A critical SQL injection vulnerability exists in code-projects Online Medicine Guide version 1.0. This vulnerability allows remote attackers to inject malicious SQL code, potentially leading to unauthorized data access or modification.

Basic Information

ID CVE-2025-8809

Source VulDB

Published Aug 10, 2025 at 12:32

Affected Product

Vendor code-projects

Product Online Medicine Guide

Version 1.0

Affected Versions code-projects Online Medicine Guide 1.0

CWE Classification

CWE-89 CWE-74

AI Assessment

AI Severity High

Vendor code-projects

Product Online Medicine Guide

Version 1.0

References

{
    "lastseen": "",
    "description": "A vulnerability classified as critical has been found in code-projects Online Medicine Guide 1.0. Affected is an unknown function of the file /addelidetails.php. The manipulation of the argument del leads to sql injection. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used.",
    "published": "2025-08-10T12:32:06.113Z",
    "modified": "2025-08-10T12:32:06.113Z",
    "type": "cve",
    "title": "code-projects Online Medicine Guide addelidetails.php sql injection",
    "source": "VulDB",
    "references": "https://vuldb.com/?id.319338\nhttps://vuldb.com/?ctiid.319338\nhttps://vuldb.com/?submit.627335\nhttps://github.com/Find33-3/cve/issues/1\nhttps://code-projects.org/",
    "id": "CVE-2025-8809",
    "bulletinFamily": "",
    "cwe": [
        "CWE-89",
        "CWE-74"
    ],
    "cvelist": null,
    "sourceData": "code-projects Online Medicine Guide 1.0",
    "sourceHref": "",
    "cvss": {
        "score": 6.9,
        "severity": "MEDIUM",
        "vector": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P",
        "version": "4.0"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "",
    "category_name": "CVE",
    "post_link": "",
    "product": "Online Medicine Guide",
    "version": "1.0",
    "vendor": "code-projects",
    "ai_description": "A critical SQL injection vulnerability exists in code-projects Online Medicine Guide version 1.0. This vulnerability allows remote attackers to inject malicious SQL code, potentially leading to unauthorized data access or modification.",
    "ai_severity": "High",
    "ai_vendor": "code-projects",
    "ai_product": "Online Medicine Guide",
    "ai_version": "1.0",
    "ai_score": 0
}

💭 Join the Security Discussion ❌ Cancel Reply