CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2025-2655

A vulnerability was detected in SourceCodester AC Repair and Services System 1.0. The affected element is the function save_users/delete_users of the file /classes/Users.php. Performing manipulation of the argument ID results in sql injection. It is possible to initiate the attack remotely. The exploit is now public and may be used. Other parameters might be affected as well.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 22.8%

CVSS Severity

CVSS v3 Score 7.3

CVSS v2 Score 7.5

References

https://github.com/Colorado-all/cve/blob/main/AC%20Repair%20and%20Services%20System%20using/SQL-8.md
https://vuldb.com/?ctiid.300670
https://vuldb.com/?id.300670
https://vuldb.com/?submit.520017
https://vuldb.com/?submit.696635
https://www.sourcecodester.com/

Products affected by CVE-2025-2655

Oretnom23 » Ac Repair And Services System » Version: 1.0

cpe:2.3:a:oretnom23:ac_repair_and_services_system:1.0

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2025-2655

Products

Pricing

Contact Us