CVE-2025-11036 | code-projects E-Commerce Website 1.0 admin_account_update.php user_id sql injection

Inserito da Angelo Barbosa | Set 26, 2025 | CVE

A vulnerability was found in code-projects E-Commerce Website 1.0. It has been declared as critical. This affects an unknown function of the file /pages/admin_account_update.php. Such manipulation of the argument user_id leads to sql injection.

This vulnerability is uniquely identified as CVE-2025-11036. The attack can be launched remotely. Moreover, an exploit is present.

CVE-2025-11036 | code-projects E-Commerce Website 1.0 admin_account_update.php user_id sql injection

Post correlati

CVE-2024-10434 | Tenda AC1206 up to 20241027 /goform/ate ate_Tenda_mfg_check_usb/ate_Tenda_mfg_check_usb3 arg stack-based overflow

CVE-2025-5416 | Red Hat KeyCloak Admin Console /admin/serverinfo information disclosure

CVE-2023-37325 | D-Link DAP-2622 DDP Set SSID List missing authentication (ZDI-23-1280)

CVE-2023-26998 | NetScout nGeniusOne 6.3.4 Alert Configuration Page cross site scripting