Filtered by vendor Carmelo Subscriptions
Filtered by product Staff Audit System Subscriptions
Total 2 CVE
CVE Vendors Products Updated CVSS v3.1
CVE-2025-7180 1 Carmelo 1 Staff Audit System 2025-07-08 7.3 High
A vulnerability, which was classified as critical, has been found in code-projects Staff Audit System 1.0. This issue affects some unknown processing of the file /login.php. The manipulation of the argument User leads to sql injection. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used.
CVE-2025-7181 1 Carmelo 1 Staff Audit System 2025-07-08 6.3 Medium
A vulnerability, which was classified as critical, was found in code-projects Staff Audit System 1.0. Affected is an unknown function of the file /test.php. The manipulation of the argument uploadedfile leads to unrestricted upload. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used.