CVE-2025-6665 | code-projects Inventory Management System 1.0 editBrand.php editBrandStatus sql injection

Inserito da Angelo Barbosa | Giu 25, 2025 | CVE

A vulnerability has been found in code-projects Inventory Management System 1.0 and classified as critical. Affected by this vulnerability is an unknown functionality of the file /php_action/editBrand.php. The manipulation of the argument editBrandStatus leads to sql injection.

This vulnerability is known as CVE-2025-6665. The attack can be launched remotely. Furthermore, there is an exploit available.

CVE-2025-6665 | code-projects Inventory Management System 1.0 editBrand.php editBrandStatus sql injection

Post correlati

CVE-2024-41918 | Rakuten Ichiba App on iOS/Android Custom URL Scheme redirect

CVE-2024-5754 | zephyrproject-rtos Zephyr up to 3.6 BT cryptographic issues (GHSA-gvv5-66hw-5qrc)

CVE-2024-20099 | MediaTek MT6768/MT6833/MT6853/MT6877/MT6893/MT8532 Power out-of-bounds write (MSV-1625 / ALPS08997492)

CVE-2024-38806 | Cloud Foundry UAA up to 40.17.0 expected behavior violation