CVE-2025-0299 | code-projects Online Book Shop 1.0 /search_result.php sql injection

Inserito da Angelo Barbosa | Gen 7, 2025 | CVE

A vulnerability classified as critical has been found in code-projects Online Book Shop 1.0. Affected is an unknown function of the file /search_result.php. The manipulation of the argument s leads to sql injection.

This vulnerability is traded as CVE-2025-0299. It is possible to launch the attack remotely. Furthermore, there is an exploit available.

CVE-2025-0299 | code-projects Online Book Shop 1.0 /search_result.php sql injection

Post correlati

CVE-2024-10240 | GitLab Enterprise Edition up to 17.3.6/17.4.3/17.5.1 Private Project exposure of sensitive system information to an unauthorized control sphere (Issue 493188)

CVE-2024-40395 | PTC ThingWorx 9.5.0 resource injection

CVE-2023-48774 | IdeaPush Plugin up to 8.53 on WordPress authorization

CVE-2024-41881 | Philip Hazel SDoP up to 1.10 XML File stack-based overflow