CVE-2025-1202

Name of the Vulnerable Software and Affected Versions SourceCodester Best Church Management Software version 1.1

Description A critical issue has been found in the software, affecting an unknown function of the file /admin/edit slider.php. The manipulation of the id argument leads to SQL injection. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used.

Recommendations For version 1.1, consider disabling the /admin/edit slider.php file or restricting access to it until a patch is available. Avoid using the id argument in the affected file to minimize the risk of exploitation.