Liming0618

#13661of 53,624
19.6Total CVSS
Vulnerabilities · 2
Critical
2
PT-2025-39668
9.8
2025-09-26
Kidaze · Courseselectionsystem · CVE-2025-11032
**Name of the Vulnerable Software and Affected Versions** kidaze CourseSelectionSystem versions prior to 42cd892b40a18d50bd4ed1905fa89f939173a464 **Description** A flaw exists in kidaze CourseSelectionSystem that allows for SQL injection. The issue stems from the manipulation of the `CPU` argument during processing of the file '/Profilers/PriProfile/COUNT3s6.php'. This can be exploited remotely. **Recommendations** Update kidaze CourseSelectionSystem to a version prior to 42cd892b40a18d50bd4ed1905fa89f939173a464.
PT-2025-39671
9.8
2025-09-26
Kidaze · Courseselectionsystem · CVE-2025-11033
**Name of the Vulnerable Software and Affected Versions** kidaze CourseSelectionSystem versions prior to 42cd892b40a18d50bd4ed1905fa89f939173a464 **Description** A flaw exists in kidaze CourseSelectionSystem that allows for SQL injection. The issue is due to the manipulation of the `cbe` argument within an unknown function of the file `/Profilers/PriProfile/COUNT3s7.php`. This can be exploited remotely. The exploit is publicly available. **Recommendations** Update kidaze CourseSelectionSystem to a version prior to 42cd892b40a18d50bd4ed1905fa89f939173a464.