Dingzenggonpo/cve

Releases0

CVE History

CVE	Published	CVSS v3	CVSS v2
CVE-2025-8255 ↗	Jul 28, 2025Monday, 28 July 2025, 04:15	7.3 HIGH	7.5 HIGH
A vulnerability was found in code-projects Exam Form Submission 1.0. It has been rated as critical. This issue affects some unknown processing of the file /register.php. The manipulation of the argument image leads to unrestricted upload. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used.
CVE-2025-8249 ↗	Jul 28, 2025Monday, 28 July 2025, 01:15	7.3 HIGH	7.5 HIGH
A vulnerability, which was classified as critical, has been found in code-projects Exam Form Submission 1.0. This issue affects some unknown processing of the file /admin/update_s3.php. The manipulation of the argument credits leads to sql injection. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used.
CVE-2025-8250 ↗	Jul 28, 2025Monday, 28 July 2025, 01:15	7.3 HIGH	7.5 HIGH
A vulnerability, which was classified as critical, was found in code-projects Exam Form Submission 1.0. Affected is an unknown function of the file /admin/update_s4.php. The manipulation of the argument credits leads to sql injection. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used.