CVE-2025-12309 | code-projects Nero Social Networking Site 1.0 /friendprofile.php ID sql injection

A vulnerability classified as critical was found in code-projects Nero Social Networking Site 1.0. This affects an unknown part of the file /friendprofile.php. Executing manipulation of the argument ID can lead to sql injection.

This vulnerability is registered as CVE-2025-12309. It is possible to launch the attack remotely. Furthermore, an exploit is available.VulDB Recent EntriesRead More