CVE-2025-0198 | code-projects Point of Sales and Inventory Management System 1.0 /user/search_result.php id sql injection

Inserito da Angelo Barbosa | Gen 3, 2025 | CVE

A vulnerability, which was classified as critical, has been found in code-projects Point of Sales and Inventory Management System 1.0. This issue affects some unknown processing of the file /user/search_result.php. The manipulation of the argument id leads to sql injection.

The identification of this vulnerability is CVE-2025-0198. The attack may be initiated remotely. Furthermore, there is an exploit available.

CVE-2025-0198 | code-projects Point of Sales and Inventory Management System 1.0 /user/search_result.php id sql injection

Post correlati

CVE-2023-45591 | AiLux imx6 up to 1.0.7-1 Ax_rtu logger_generic heap-based overflow

CVE-2023-1111 | FastCMS up to 0.1.5 New Article Tab Title cross site scripting (I8ERNV)

CVE-2024-30004 | Microsoft unknown vulnerability

CVE-2024-2293 | Site Reviews Plugin up to 6.11.4 on WordPress Display Name cross site scripting