CVE-2019-25672 | pilus PilusCart 1.4.1 Comment Submission Endpoint send sql injection (Exploit 46368 / EDB-46368)

Inserito da Angelo Barbosa | Apr 6, 2026 | CVE

A vulnerability identified as critical has been detected in pilus PilusCart 1.4.1. Affected by this issue is some unknown functionality of the component Comment Submission Endpoint. Performing a manipulation of the argument send results in sql injection.

This vulnerability is known as CVE-2019-25672. Remote exploitation of the attack is possible. Furthermore, an exploit is available.

CVE-2019-25672 | pilus PilusCart 1.4.1 Comment Submission Endpoint send sql injection (Exploit 46368 / EDB-46368)

Post correlati

CVE-2024-33933 | Brainstorm Force & Nikhil Chavan Elementor Plugin up to 1.6.35 on WordPress cross site scripting

CVE-2026-2012 | itsourcecode Student Management System 1.0 index.php ID sql injection

CVE-2024-0366 | Starbox Plugin up to 3.4.7 on WordPress resource injection

CVE-2025-23022 | FreeType 2.8.1 cff/cf2intrp.c cf2_doFlex integer overflow (Issue 1312)