CVE-2025-15196: SQL Injection in code-projects Assessment Management
A vulnerability was identified in code-projects Assessment Management 1.0. This affects an unknown part of the file login.php. Such manipulation of the argument userid leads to sql injection. The attack can be launched remotely. The exploit is publicly available and might be used.
CVE-2025-15196: SQL Injection in code-projects Assessment Management
Description
A vulnerability was identified in code-projects Assessment Management 1.0. This affects an unknown part of the file login.php. Such manipulation of the argument userid leads to sql injection. The attack can be launched remotely. The exploit is publicly available and might be used.
Technical Details
- Data Version
- 5.2
- Assigner Short Name
- VulDB
- Date Reserved
- 2025-12-28T10:06:40.361Z
- Cvss Version
- 4.0
- State
- PUBLISHED
Threat ID: 6952b04971a94549f147f47e
Added to database: 12/29/2025, 4:46:01 PM
Last updated: 12/29/2025, 6:53:46 PM
Views: 6
Community Reviews
0 reviewsCrowdsource mitigation strategies, share intel context, and vote on the most helpful responses. Sign in to add your voice and help keep defenders ahead.
Want to contribute mitigation steps or threat intel context? Sign in or create an account to join the community discussion.
Related Threats
CVE-2025-68706: n/a
UnknownCVE-2025-15200: Cross Site Scripting in SohuTV CacheCloud
Medium39C3: Multiple vulnerabilities in GnuPG and other cryptographic tools
MediumCVE-2025-14280: CWE-200 Exposure of Sensitive Information to an Unauthorized Actor in pixelyoursite PixelYourSite – Your smart PIXEL (TAG) & API Manager
MediumCVE-2025-13592: CWE-94 Improper Control of Generation of Code ('Code Injection') in monetizemore Advanced Ads – Ad Manager & AdSense
HighActions
Need more coverage?
Upgrade to Pro Console in Console -> Billing for AI refresh and higher limits.
For incident response and remediation, OffSeq services can help resolve threats faster.