CVE-2025-7611

Name of the Vulnerable Software and Affected Versions: code-projects Wedding Reservation version 1.0

Description: A critical issue exists in code-projects Wedding Reservation 1.0, affecting an unknown part of the file /global.php. The manipulation of the argument lu leads to SQL injection, allowing for remote attacks. The exploit has been publicly disclosed.

Recommendations: As a temporary workaround, consider restricting access to the /global.php file until a patch is available. Avoid using the parameter lu in the affected file /global.php to minimize the risk of exploitation.