CVE-2025-13449 | code-projects Online Shop Project 1.0 /login.php Password sql injection

Inserito da Angelo Barbosa | Nov 19, 2025 | CVE

A vulnerability classified as critical was found in code-projects Online Shop Project 1.0. This issue affects some unknown processing of the file /login.php. The manipulation of the argument Password results in sql injection.

This vulnerability was named CVE-2025-13449. The attack may be performed from remote. In addition, an exploit is available.

CVE-2025-13449 | code-projects Online Shop Project 1.0 /login.php Password sql injection

Post correlati

CVE-2024-1097 | craigk5n webcalendar up to 1.3.0 Report Name cross site scripting

CVE-2025-4456 | Project Worlds Car Rental Project 1.0 /signup.php fname sql injection

CVE-2024-48847 | ABB ASPECT-Enterprise/NEXUS/MATRIX up to 3.08.01 weak hash

CVE-2024-21786 | MC Technologies MC LR Router 2.10.5 HTTP Request os command injection (TALOS-2024-1954)