VYPR

Social Networking Site

by Code Projects

CVEs (16)

  • CVE-2026-2083HigFeb 7, 2026
    risk 0.47cvss 7.3epss 0.00

    A security flaw has been discovered in code-projects Social Networking Site 1.0. This affects an unknown function of the file /delete_post.php. Performing a manipulation of the argument ID results in sql injection. It is possible to initiate the attack remotely. The exploit has…

  • CVE-2025-13277HigNov 17, 2025
    risk 0.47cvss 7.3epss 0.00

    A flaw has been found in code-projects Nero Social Networking Site 1.0. This issue affects some unknown processing of the file /friendsphoto.php. This manipulation of the argument ID causes sql injection. The attack can be initiated remotely. The exploit has been published and…

  • CVE-2025-12309HigOct 27, 2025
    risk 0.47cvss 7.3epss 0.00

    A weakness has been identified in code-projects Nero Social Networking Site 1.0. This affects an unknown part of the file /friendprofile.php. Executing manipulation of the argument ID can lead to sql injection. It is possible to launch the attack remotely. The exploit has been…

  • CVE-2025-12308HigOct 27, 2025
    risk 0.47cvss 7.3epss 0.00

    A security flaw has been discovered in code-projects Nero Social Networking Site 1.0. Affected by this issue is some unknown functionality of the file /deletemessage.php. Performing manipulation of the argument message_id results in sql injection. It is possible to initiate the…

  • CVE-2025-12307HigOct 27, 2025
    risk 0.47cvss 7.3epss 0.00

    A vulnerability was identified in code-projects Nero Social Networking Site 1.0. Affected by this vulnerability is an unknown functionality of the file /addfriend.php. Such manipulation of the argument ID leads to sql injection. The attack may be performed from remote. The…

  • CVE-2025-12306HigOct 27, 2025
    risk 0.47cvss 7.3epss 0.00

    A vulnerability was determined in code-projects Nero Social Networking Site 1.0. Affected is an unknown function of the file /acceptoffres.php. This manipulation of the argument ID causes sql injection. The attack is possible to be carried out remotely. The exploit has been…

  • CVE-2026-4970MedMar 27, 2026
    risk 0.41cvss 6.3epss 0.00

    A security flaw has been discovered in code-projects Social Networking Site 1.0. This affects an unknown function of the file delete_photos.php of the component Endpoint. The manipulation of the argument ID results in sql injection. The attack can be executed remotely. The…

  • CVE-2025-13279MedNov 17, 2025
    risk 0.41cvss 6.3epss 0.00

    A vulnerability was found in code-projects Nero Social Networking Site 1.0. The affected element is an unknown function of the file /profilefriends.php. Performing manipulation of the argument ID results in sql injection. The attack may be initiated remotely. The exploit has…

  • CVE-2026-4969LowMar 27, 2026
    risk 0.23cvss 3.5epss 0.00

    A vulnerability was identified in code-projects Social Networking Site 1.0. The impacted element is an unknown function of the file /home.php of the component Alert Handler. The manipulation of the argument content leads to cross site scripting. Remote exploitation of the attack…

  • CVE-2025-4250May 4, 2025
    risk 0.00cvss epss 0.00

    A vulnerability was found in code-projects Nero Social Networking Site 1.0. It has been classified as critical. This affects an unknown part of the file /index.php. The manipulation of the argument fname/lname/login/password2/cpassword/address/cnumber/email/gender/propic/month…

  • CVE-2024-0722Jan 19, 2024
    risk 0.00cvss epss 0.00

    A vulnerability was found in code-projects Social Networking Site 1.0 and classified as problematic. Affected by this issue is some unknown functionality of the file message.php of the component Message Page. The manipulation of the argument Story leads to cross site scripting.…

  • CVE-2022-30460May 24, 2022
    risk 0.00cvss epss 0.00

    Simple Social Networking Site v1.0 is vulnerable to Cross Site Scripting (XSS) via /sns/classes/Users.php?f=save, firstname.

  • CVE-2022-30375May 13, 2022
    risk 0.00cvss epss 0.01

    Sourcecodester Simple Social Networking Site v1.0 is vulnerable to file deletion via /sns/classes/Master.php?f=delete_img.

  • CVE-2022-30376May 13, 2022
    risk 0.00cvss epss 0.01

    Sourcecodester Simple Social Networking Site v1.0 is vulnerable to SQL Injection via /sns/admin/members/view_member.php?id=.

  • CVE-2022-30378May 13, 2022
    risk 0.00cvss epss 0.01

    Sourcecodester Simple Social Networking Site v1.0 is vulnerable to SQL Injection via /sns/admin/?page=posts/view_post&id=.

  • CVE-2022-30379May 13, 2022
    risk 0.00cvss epss 0.01

    Sourcecodester Simple Social Networking Site v1.0 is vulnerable to SQL Injection via /sns/admin/?page=user/manage_user&id=.