CVE-2025-6611 | code-projects Inventory Management System 1.0 createBrand.php brandStatus sql injection

Inserito da Angelo Barbosa | Giu 25, 2025 | CVE

A vulnerability was found in code-projects Inventory Management System 1.0. It has been declared as critical. This vulnerability affects unknown code of the file /php_action/createBrand.php. The manipulation of the argument brandStatus leads to sql injection.

This vulnerability was named CVE-2025-6611. The attack can be initiated remotely. Furthermore, there is an exploit available.

CVE-2025-6611 | code-projects Inventory Management System 1.0 createBrand.php brandStatus sql injection

Post correlati

CVE-2024-34274 | OpenBD 20210306203917-6cbe797 Cookie bdglobals/bdclient_spot deserialization (Issue 89)

CVE-2024-1627 | Linux Kernel IPv4 Networking Stack net/ipv4/af_inet.c inet_sock_destruct double free

CVE-2024-1580 | VideoLAN dav1d up to 1.3.x AV1 Decoder integer overflow

CVE-2025-1106 | CmsEasy 7.7.7.9 database_admin.php deletedir_action/restore_action path traversal