CVE-2025-9013 | PHPGurukul Online Shopping Portal Project 2.0 password-recovery.php emailid sql injection

Inserito da Angelo Barbosa | Ago 13, 2025 | CVE

A vulnerability has been found in PHPGurukul Online Shopping Portal Project 2.0 and classified as critical. This vulnerability affects unknown code of the file /shopping/password-recovery.php. The manipulation of the argument emailid leads to sql injection.

This vulnerability was named CVE-2025-9013. The attack can be initiated remotely. Furthermore, there is an exploit available.

CVE-2025-9013 | PHPGurukul Online Shopping Portal Project 2.0 password-recovery.php emailid sql injection

Post correlati

CVE-2024-2142 | Ultimate Addons for Beaver Builder Plugin up to 1.5.7 on WordPress Info Table Widget cross site scripting

CVE-2022-4967 | strongSwan 5.9.2/5.9.3/5.9.4/5.9.5 IKE/EAP authorization

CVE-2024-22871 | Clojure up to 1.20 clojure.core$partial$fn__5920 denial of service

CVE-2024-2623 | wpdevteam Essential Addons for Elementor Plugin up to 5.9.11 on WordPress Countdown Widget message cross site scripting