1. Home
  2. CVE Database
  3. CVE-2025-67285
HIGH · 7.3

CVE-2025-67285

A SQL injection vulnerability was found in the '/cts/admin/?page=zone' file of ITSourcecode COVID Tracking System Using QR-Code v1.0. The reason for this issue is that attackers inject malicious code ...

Vulnerability Description

A SQL injection vulnerability was found in the '/cts/admin/?page=zone' file of ITSourcecode COVID Tracking System Using QR-Code v1.0. The reason for this issue is that attackers inject malicious code from the parameter 'id' and use it directly in SQL queries without the need for appropriate cleaning or validation.

CVSS Score

7.3

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality
LOW
Integrity
LOW
Availability
LOW

Affected Products

VendorProductVersions
AngeljudesuarezCovid Tracking System Using Qr-Code1.0

Related Weaknesses (CWE)

CWE-89

References

FAQ

What is CVE-2025-67285?

CVE-2025-67285 is a vulnerability with a CVSS score of 7.3 (HIGH). A SQL injection vulnerability was found in the '/cts/admin/?page=zone' file of ITSourcecode COVID Tracking System Using QR-Code v1.0. The reason for this issue is that attackers inject malicious code ...

How severe is CVE-2025-67285?

CVE-2025-67285 has been rated HIGH with a CVSS base score of 7.3/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2025-67285?

Check the references section above for vendor advisories and patch information. Affected products include: Angeljudesuarez Covid Tracking System Using Qr-Code.