CVE-2025-7861

Severity CVSS v4.0:
MEDIUM
Type:
CWE-74 Injection
Publication date:
20/07/2025
Last modified:
22/07/2025

Description

A vulnerability, which was classified as critical, was found in code-projects Church Donation System 1.0. Affected is an unknown function of the file /members/search.php. The manipulation of the argument Username leads to sql injection. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used.