1000 Projects Online Notice Board index.php sql injection

May 29, 2025 invoker category_cve

CVE Details

Basic Information

Title 1000 Projects Online Notice Board index.php sql injection
Type cve
Published 2025-05-29T22:31:04.158Z
Last Seen

Product Information

Vendor 1000 Projects
Product Online Notice Board
Version 1.0

CVSS Information

Base Score 6.9 (MEDIUM)
Attack Vector CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N
Confidentiality Impact
Integrity Impact
Availability Impact

AI Analysis

AI Description A SQL injection vulnerability in the Online Notice Board 1.0 allows remote attackers to inject malicious SQL code via the email argument in index.php, potentially leading to data tampering and unauthorized access.
AI Severity High
Vendor 1000 Projects
Product Online Notice Board
Affected Version 1.0

Additional Information

CVE List
CWE List CWE-89, CWE-74
Bulletin Family
Source Data 1000 Projects Online Notice Board 1.0

Source Information

Source Data 1000 Projects Online Notice Board 1.0
Source Link

Description

A vulnerability was found in 1000 Projects Online Notice Board 1.0 and classified as critical. This issue affects some unknown processing of the file /index.php. The manipulation of the argument email leads to sql injection. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used.

CVSS Score Summary

Base Score: 6.9 (MEDIUM)

View Full CVE Details

💭 Join the Security Discussion

🔒 Your email address will not be published. Required fields are marked *

⚠️ Please be respectful and constructive in your comments. Security discussions should remain professional.