CVE-2025-13575 – code-projects Blog Site Category blog.php category_exists sql injection

CVE ID : CVE-2025-13575

Published : Nov. 24, 2025, 12:32 a.m. | 50 minutes ago

Description : A security vulnerability has been detected in code-projects Blog Site 1.0. Impacted is the function category_exists of the file /resources/functions/blog.php of the component Category Handler. Such manipulation of the argument name/field leads to sql injection. The attack may be performed from remote. The exploit has been disclosed publicly and may be used. Multiple endpoints are affected.

Severity: 0.0 | NA

Visit the link for more details, such as CVSS details, affected products, timeline, and more…