CVE-2025-1197
published 2025-02-12CVE-2025-1197: A vulnerability has been found in code-projects Real Estate Property Management System 1.0 and classified as critical. Affected by this vulnerability is an…
medium5.3CVSS 4.0
AVNACLATNPRLUINVCLVILVALSCNSINSANEXCRXIRXARXMAVXMACXMATXMPRXMUIXMVCXMVIXMVAXMSCXMSIXMSAXSXAUXRXVXREXUX
A vulnerability has been found in code-projects Real Estate Property Management System 1.0 and classified as critical. Affected by this vulnerability is an unknown functionality of the file /_parse/load_user-profile.php. The manipulation of the argument userhash leads to sql injection. The attack can be launched remotely. The exploit has been disclosed to the public and may be used.
Affected
4 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| code-projects | real_estate_property_management_system | — | — |
| fabian | real_estate_property_management_system | — | — |
| linux | linux_kernel | >= 6.17.0 < 6.17.3 | 6.17.3 |
| msrc | cbl2_cpio_2.13-5_on_cbl_mariner_2.0 | — | — |