SQL Injection Vulnerability in Code-Projects Modern Bag by Code-Projects
CVE-2025-7509

7.3HIGH

Key Information:

Vendor: Code-Projects
Status: Modern Bag
Vendor: CVE Published:; 13 July 2025

🔔 Create Code-Projects Vulnerability Alert

What is CVE-2025-7509?

A security issue has been identified in Code-Projects' Modern Bag version 1.0, specifically within the /admin/slide.php file. This vulnerability allows for SQL injection attacks through manipulation of the idSlide argument, which can be exploited remotely. With the details of the vulnerability now public, it poses a significant risk as it may enable unauthorized access to sensitive data and system manipulation by malicious actors.

References

https://code-projects.org/

https://github.com/chipower777/cve/issues/2

https://vuldb.com/?ctiid.316191

CVSS V3.1

Score:

7.3

Severity:

HIGH

Confidentiality:

Low

Integrity:

Low

Availability:

Low

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jul 13, 2025