PT-2025-35296 · Code Projects · Simple Grading System

Liule

Published

2025-08-29

Updated

2025-08-29

CVE-2025-9664

CVSS v3.1

8.8

High

Vector

AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions code-projects Simple Grading System version 1.0

Description A security flaw exists in code-projects Simple Grading System 1.0. The issue is a SQL injection affecting an unknown function within the /add student grade.php file of the Admin Panel component. The Add argument can be manipulated to launch the attack remotely. The exploit has been released publicly.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

Special Elements Injection

SQL injection

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-74CWE-89

Related Identifiers

CVE-2025-9664

Affected Products

Simple Grading System

PT-2025-35296 · Code Projects · Simple Grading System

CVE-2025-9664

Weakness Enumeration

Related Identifiers

Affected Products

References · 8