📦 Chat System

A critical SQL injection vulnerability exists in code-projects Chat System 1.0 through the /user/send_message.php file's msg parameter. Attackers can remotely execute arbitrary SQL commands to potenti...

CVE-2025-7187 is a critical SQL injection vulnerability in code-projects Chat System 1.0 that allows remote attackers to execute arbitrary SQL commands via the ID parameter in /user/fetch_member.php. ...

This is a critical SQL injection vulnerability in code-projects Chat System version 1.0 and earlier. Attackers can remotely exploit the /user/addnewmember.php endpoint by manipulating the 'user' param...

This critical SQL injection vulnerability in code-projects Chat System 1.0 allows remote attackers to execute arbitrary SQL commands via the 'id' parameter in /user/leaveroom.php. This can lead to una...