CVE-2025-0176 | code-projects Point of Sales and Inventory Management System 1.0 /user/add_cart.php id/qty sql injection

Inserito da Angelo Barbosa | Gen 2, 2025 | CVE

A vulnerability was found in code-projects Point of Sales and Inventory Management System 1.0. It has been rated as critical. This issue affects some unknown processing of the file /user/add_cart.php. The manipulation of the argument id/qty leads to sql injection.

The identification of this vulnerability is CVE-2025-0176. The attack may be initiated remotely. Furthermore, there is an exploit available.

CVE-2025-0176 | code-projects Point of Sales and Inventory Management System 1.0 /user/add_cart.php id/qty sql injection

Post correlati

CVE-2024-4469 | WP STAGING Backup Plugin up to 3.5.0 on WordPress server-side request forgery

CVE-2024-31266 | AlgolPlus Advanced Order Export for WooCommerce Plugin up to 3.4.4 on WordPress code injection

CVE-2024-12953 | 1000 Projects Portfolio Management System MCA 1.0 /update_pd_process.php profile unrestricted upload

CVE-2024-6373 | itsourcecode Online Food Ordering System up to 1.0 /addproduct.php photo unrestricted upload