code-projects Online Farm System register.php sql injection

July 30, 2025 invoker category_cve

CVE Details

Basic Information

Title	code-projects Online Farm System register.php sql injection
Type	cve
Published	2025-07-30T20:32:06.315Z
Modified	2025-07-30T20:32:06.315Z

Product Information

Vendor	code-projects
Product	Online Farm System
Version	1.0

CVSS Information

Base Score	6.9 (MEDIUM)
Attack Vector	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P

Affected Products

code-projects Online Farm System 1.0

Additional Information

CWE List	CWE-89, CWE-74
Source	VulDB

Description

A vulnerability was found in code-projects Online Farm System 1.0. It has been classified as critical. Affected is an unknown function of the file /register.php. The manipulation of the argument Username leads to sql injection. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used.

References

https://vuldb.com/?id.318282
https://vuldb.com/?ctiid.318282
https://vuldb.com/?submit.624003
https://github.com/wllovemy/cve/issues/9
https://code-projects.org/

View Full CVE Details