CVE-2025-9027 | code-projects Online Medicine Guide 1.0 /addelivery.php deName sql injection

Inserito da Angelo Barbosa | Ago 14, 2025 | CVE

A vulnerability was found in code-projects Online Medicine Guide 1.0. It has been declared as critical. This vulnerability affects unknown code of the file /addelivery.php. The manipulation of the argument deName leads to sql injection.

This vulnerability was named CVE-2025-9027. The attack can be initiated remotely. Furthermore, there is an exploit available.

CVE-2025-9027 | code-projects Online Medicine Guide 1.0 /addelivery.php deName sql injection

Post correlati

CVE-2024-26760 | Linux Kernel up to 6.1.79/6.6.18/6.7.6 pscsi bio_put null pointer dereference

CVE-2024-47669 | Linux Kernel up to 6.10.9 nilfs2 nilfs_segctor_do_construct state issue

CVE-2024-5481 | 10Web Photo Gallery Plugin up to 1.8.23 on WordPress esc_dir path traversal

CVE-2024-5284 | WP-FeedStats wp-affiliate-platform Plugin up to 6.5.0 on WordPress cross-site request forgery