{"id":72404,"date":"2025-10-27T10:45:40","date_gmt":"2025-10-27T07:15:40","guid":{"rendered":"https:\/\/afaghhosting.net\/blog\/cve-2025-12243-code-projects-client-details-system-get-parameter-welcome-php-sql-injection\/"},"modified":"2025-10-27T10:45:40","modified_gmt":"2025-10-27T07:15:40","slug":"cve-2025-12243-code-projects-client-details-system-get-parameter-welcome-php-sql-injection","status":"publish","type":"post","link":"https:\/\/afaghhosting.net\/blog\/cve-2025-12243-code-projects-client-details-system-get-parameter-welcome-php-sql-injection\/","title":{"rendered":"CVE-2025-12243 &#8211; code-projects Client Details System GET Parameter welcome.php sql injection"},"content":{"rendered":"<p>CVE ID : CVE-2025-12243<\/p>\n<p>Published :  Oct. 27, 2025, 7:15 a.m. | 1\u00a0hour, 29\u00a0minutes ago<\/p>\n<p>Description : A vulnerability was found in code-projects Client Details System 1.0. Affected by this issue is some unknown functionality of the file clientdetails\/welcome.php of the component GET Parameter Handler. Performing manipulation of the argument ID results in sql injection. The attack may be initiated remotely. The exploit has been made public and could be used.<\/p>\n<p>Severity: 6.5 | MEDIUM<\/p>\n<p>Visit the link for more details, such as CVSS details, affected products, timeline, and more&#8230;\u00a0<\/p>\n","protected":false},"excerpt":{"rendered":"<p>CVE ID : CVE-2025-12243 Published : Oct. 27, 2025, 7:15 a.m. | 1\u00a0hour, 29\u00a0minutes ago Description : A vulnerability was found in code-projects Client Details System 1.0. Affected by this issue is some unknown functionality of the file clientdetails\/welcome.php of the component GET Parameter Handler. Performing manipulation of the argument ID results in sql injection. &hellip;<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[26],"tags":[],"class_list":["post-72404","post","type-post","status-publish","format-standard","hentry","category-vulnerability"],"_links":{"self":[{"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/posts\/72404","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/comments?post=72404"}],"version-history":[{"count":0,"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/posts\/72404\/revisions"}],"wp:attachment":[{"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/media?parent=72404"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/categories?post=72404"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/tags?post=72404"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}