cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,exploited_date,poc,trended,trended_no_1,trended_no_1_date,published,trended_score
CVE-2025-1202,https://securityvulnerability.io/vulnerability/CVE-2025-1202,SQL Injection Vulnerability in Best Church Management Software by SourceCodester,"A vulnerability has been identified in the Best Church Management Software by SourceCodester, specifically affecting the '/admin/edit_slider.php' file. Through improper handling of the 'id' parameter, this vulnerability allows for SQL injection, enabling remote attackers to execute arbitrary SQL queries. As a result, sensitive information could be manipulated, leading to a significant security breach. Users of this software are advised to take immediate action to secure their systems.",Sourcecodester,Best Church Management Software,5.3,MEDIUM,0.001449999981559813,false,,false,false,true,2025-02-12T14:31:05.000Z,true,false,false,,2025-02-12T14:31:05.278Z,0
CVE-2025-1201,https://securityvulnerability.io/vulnerability/CVE-2025-1201,SQL Injection Vulnerability in SourceCodester Best Church Management Software,"A vulnerability exists in SourceCodester Best Church Management Software 1.1 that allows attackers to exploit an unsafe processing method in the /admin/app/profile_crud.php file. This vulnerability enables SQL injection attacks, posing a significant security risk as it may be exploited remotely, potentially compromising sensitive data and database integrity. Because multiple parameters could be targeted, it opens a pathway for unauthorized access and data manipulation. Promptly addressing this issue is essential to safeguard the application's security.",Sourcecodester,Best Church Management Software,5.3,MEDIUM,0.001449999981559813,false,,false,false,true,2025-02-12T14:00:15.000Z,true,false,false,,2025-02-12T14:00:15.735Z,0
CVE-2025-1200,https://securityvulnerability.io/vulnerability/CVE-2025-1200,SQL Injection in SourceCodester Best Church Management Software 1.1,"A security vulnerability has been identified in SourceCodester's Best Church Management Software version 1.1, specifically within the /admin/app/slider_crud.php file. This vulnerability allows for SQL injection attacks through the manipulation of the del_id parameter. Given that the exploit can be executed remotely, it poses a significant risk to database integrity and can potentially compromise sensitive data. Users of the affected software should take immediate action to remediate this flaw.",Sourcecodester,Best Church Management Software,5.3,MEDIUM,0.0007900000200606883,false,,false,false,true,2025-02-12T13:31:05.000Z,true,false,false,,2025-02-12T13:31:05.509Z,0
CVE-2025-1199,https://securityvulnerability.io/vulnerability/CVE-2025-1199,SQL Injection Vulnerability in SourceCodester Best Church Management Software,"A SQL injection vulnerability has been identified in the SourceCodester Best Church Management Software version 1.1, specifically within the /admin/app/role_crud.php file. The flaw allows an attacker to manipulate the 'id' parameter, enabling unauthorized access to the database. This vulnerability can be exploited remotely, potentially compromising sensitive data. It is crucial for users of this software to apply the necessary patches and take protective measures against potential exploitation. Publicly disclosed exploits for this vulnerability are already available, heightening the urgency of addressing the issue.",Sourcecodester,Best Church Management Software,5.3,MEDIUM,0.001449999981559813,false,,false,false,true,2025-02-12T13:00:14.000Z,true,false,false,,2025-02-12T13:00:14.646Z,0