CVE-2025-12337 | Campcodes Retro Basketball Shoes Online Store 1.0 /admin/admin_feature.php pid sql injection

Inserito da Angelo Barbosa | Ott 27, 2025 | CVE

A vulnerability has been found in Campcodes Retro Basketball Shoes Online Store 1.0 and classified as critical. This affects an unknown part of the file /admin/admin_feature.php. Performing manipulation of the argument pid results in sql injection.

This vulnerability was named CVE-2025-12337. The attack may be initiated remotely. In addition, an exploit is available.

CVE-2025-12337 | Campcodes Retro Basketball Shoes Online Store 1.0 /admin/admin_feature.php pid sql injection

Post correlati

CVE-2023-45854 | Shopkit 1.0 add-to-cart qtd behavioral workflow

CVE-2024-1942 | Mattermost up to 8.1.8/9.2.4/9.3.0 Metadata access control

CVE-2025-0221 | IOBit Protected Folder up to 1.3.0 IOCTL pffilter.sys 0x22200c null pointer dereference

CVE-2023-50094 | reNgine up to 2.0.2 api/tools/waf_detector/ url os command injection