← back
CVE-2025-9610

code-projects Online Event Judging System create_account.php sql injection

CVSS 6.9 MEDIUMEPSS 0.4%CWE-74CWE-89
A vulnerability was determined in code-projects Online Event Judging System 1.0. This issue affects some unknown processing of the file /create_account.php. This manipulation of the argument fname causes sql injection. The attack is possible to be carried out remotely. The exploit has been publicly disclosed and may be utilized. Other parameters might be affected as well.
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P
Affected products
code-projects · Online Event Judging System

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://code-projects.org/https://github.com/yihaofuweng/cve/issues/15https://vuldb.com/?ctiid.321788https://vuldb.com/?id.321788https://vuldb.com/?submit.636622