SQL Injection Vulnerability in Exam Form Submission by Code-Projects
CVE-2025-8327

9.8CRITICAL

Key Information:

Vendor: Code-Projects
Status: Exam Form Submission
Vendor: CVE Published:; 30 July 2025

🔔 Create Code-Projects Vulnerability Alert

What is CVE-2025-8327?

A critical SQL injection vulnerability has been identified in the Exam Form Submission product version 1.0 by Code-Projects. This issue affects the file /admin/delete_s8.php, where an attacker can manipulate the ID parameter to execute unauthorized SQL commands. The exploit can be initiated remotely, potentially allowing attackers to access, modify, or delete sensitive data stored in the database. Public disclosure of this vulnerability raises significant security concerns, requiring immediate attention and remediation.

References

https://code-projects.org/

https://github.com/18672919390/CVE/issues/1

https://vuldb.com/?ctiid.318277

CVSS V3.1

Score:

9.8

Severity:

CRITICAL

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jul 30, 2025