CVE-2025-7187

Severity CVSS v4.0:
MEDIUM
Type:
CWE-74 Injection
Publication date:
08/07/2025
Last modified:
09/07/2025

Description

A vulnerability classified as critical has been found in code-projects Chat System 1.0. Affected is an unknown function of the file /user/fetch_member.php. The manipulation of the argument ID leads to sql injection. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used.