CVE-2025-9845 | code-projects Fruit Shop Management System 1.0 products.php product_code/gen_name/product_name/supplier cross site scripting

Inserito da Angelo Barbosa | Set 2, 2025 | CVE

A vulnerability categorized as problematic has been discovered in code-projects Fruit Shop Management System 1.0. Affected by this vulnerability is an unknown functionality of the file products.php. Such manipulation of the argument product_code/gen_name/product_name/supplier leads to cross site scripting.

This vulnerability is referenced as CVE-2025-9845. It is possible to launch the attack remotely. Furthermore, an exploit is available.

CVE-2025-9845 | code-projects Fruit Shop Management System 1.0 products.php product_code/gen_name/product_name/supplier cross site scripting

Post correlati

CVE-2024-48229 | funadmin 5.0.2 Curd One Click Command Mode Plugin sql injection

CVE-2024-26922 | Linux Kernel up to 6.9-rc4 amdgpu Privilege Escalation (6fef2d4c00b5)

CVE-2025-0444 | Google Chrome up to 132.0.6834.159 Skia use after free (ID 390889)

CVE-2023-46426 | GPAC 2.3-DEV-rev588-g7edc40fee-master utils/os_file.c gf_fwrite heap-based overflow (Issue 2642)