ГлавнаяУязвимости → CVE-2025-4250
7.3высокая

CVE-2025-4250

Описание

A vulnerability was found in code-projects Nero Social Networking Site 1.0. It has been classified as critical. This affects an unknown part of the file /index.php. The manipulation of the argument fname/lname/login/password2/cpassword/address/cnumber/email/gender/propic/month leads to sql injection. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used.

Затрагиваемое ПО
Fabian Nero social networking site
CVSS
Балл7.3 — высокая
ВекторCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L
Источники
https://code-projects.org/https://github.com/zzZxby/Vulnerability-Exploration/blob/main/Nero%20Social%20Networking%20Site/Nero_Social_Networking_Site.mdhttps://vuldb.com/?ctiid.307347https://vuldb.com/?id.307347https://vuldb.com/?submit.562906https://github.com/zzZxby/Vulnerability-Exploration/blob/main/Nero%20Social%20Networking%20Site/Nero_Social_Networking_Site.md