CVE-2025-15182

A weakness has been identified in code-projects Refugee Food Management System 1.0. This affects an unknown function of the file /home/served.php. Executing manipulation of the argument refNo can lead to sql injection. The attack can be executed remotely. The exploit has been made available to the p...

high 7.3 CVSS 3.1

Published: Dec 29, 2025

Modified: Dec 30, 2025

Vendor: Fabian

Product: Refugee Food Management System

Versions: 1.0

Description

A weakness has been identified in code-projects Refugee Food Management System 1.0. This affects an unknown function of the file /home/served.php. Executing manipulation of the argument refNo can lead to sql injection. The attack can be executed remotely. The exploit has been made available to the public and could be exploited.

References

Related CVEs

CVSS Breakdown

Version	3.1
Score	7.3 / 10
Severity	high

Vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L

Weakness (CWE)

CWE-74

Affected Product

Vendor	Fabian
Product	Refugee Food Management System
Versions	1.0