CVE-2025-0174 | code-projects Point of Sales and Inventory Management System 1.0 Parameter /user/search_result2.php search sql injection

Inserito da Angelo Barbosa | Gen 2, 2025 | CVE

A vulnerability was found in code-projects Point of Sales and Inventory Management System 1.0. It has been classified as critical. This affects an unknown part of the file /user/search_result2.php of the component Parameter Handler. The manipulation of the argument search leads to sql injection.

This vulnerability is uniquely identified as CVE-2025-0174. It is possible to initiate the attack remotely. Furthermore, there is an exploit available.

CVE-2025-0174 | code-projects Point of Sales and Inventory Management System 1.0 Parameter /user/search_result2.php search sql injection

Post correlati

CVE-2024-37471 | WofficeIO Woffice Core Plugin up to 5.4.8 on WordPress cross site scripting

CVE-2024-6899 | SourceCodester Record Management System 1.0 view_info.php id sql injection

CVE-2024-0221 | 10Web Photo Gallery Plugin up to 1.8.19 on WordPress File Rename path traversal

CVE-2024-21358 | Microsoft Windows up to Server 2022 23H2 WDAC OLE DB Provider for SQL Server Remote Code Execution