CVE-2025-15012

A vulnerability was determined in code-projects Refugee Food Management System 1.0. The affected element is an unknown function of the file /home/home.php. This manipulation of the argument a causes sql injection. The attack is possible to be carried out remotely. The exploit has been publicly discl...

high 7.3 CVSS 3.1

Published: Dec 22, 2025

Modified: Dec 24, 2025

Vendor: Fabian

Product: Refugee Food Management System

Versions: 1.0

Description

A vulnerability was determined in code-projects Refugee Food Management System 1.0. The affected element is an unknown function of the file /home/home.php. This manipulation of the argument a causes sql injection. The attack is possible to be carried out remotely. The exploit has been publicly disclosed and may be utilized.

References

Related CVEs

CVSS Breakdown

Version	3.1
Score	7.3 / 10
Severity	high

Vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L

Weakness (CWE)

CWE-74

Affected Product

Vendor	Fabian
Product	Refugee Food Management System
Versions	1.0