Code-Projects Project Monitoring System vulnerabilities

CVE-2025-11585 [MEDIUM] CWE-74 CVE-2025-11585: A vulnerability was found in code-projects Project Monitoring System 1.0. The impacted element is an A vulnerability was found in code-projects Project Monitoring System 1.0. The impacted element is an unknown function of the file /useredit.php. The manipulation of the argument uid results in sql injection. The attack can be executed remotely. The exploit has been made public and could be used.

CVE-2025-11124 [MEDIUM] CWE-79 CVE-2025-11124: A vulnerability has been found in code-projects Project Monitoring System 1.0. Affected is an unknow A vulnerability has been found in code-projects Project Monitoring System 1.0. Affected is an unknown function of the file /onlineJobSearchEngine/postjob.php. Such manipulation of the argument txtapplyto leads to cross site scripting. The attack may be launched remotely. The exploit has been disclosed to the public and may be used. Other parameters m

CVE-2025-11074 [MEDIUM] CWE-74 CVE-2025-11074: A flaw has been found in code-projects Project Monitoring System 1.0. The impacted element is an unk A flaw has been found in code-projects Project Monitoring System 1.0. The impacted element is an unknown function of the file /login.php. This manipulation of the argument username/password causes sql injection. The attack may be initiated remotely. The exploit has been published and may be used.