Xianhong Zeng

1 exploit Active since Sep 2025
CVE-2025-10795 WRITEUP HIGH WRITEUP
Online Bidding System 1.0 - SQL Injection via bidupdate.php ID Parameter
A vulnerability has been found in code-projects Online Bidding System 1.0. This affects an unknown part of the file /administrator/bidupdate.php. The manipulation of the argument ID leads to sql injection. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used.
CVSS 7.3