CVE-2025-13451 | SourceCodester Online Shop Project 1.0 /action.php Search sql injection

Inserito da Angelo Barbosa | Nov 19, 2025 | CVE

A vulnerability, which was classified as critical, was found in SourceCodester Online Shop Project 1.0. The affected element is an unknown function of the file /action.php. Such manipulation of the argument Search leads to sql injection.

This vulnerability is referenced as CVE-2025-13451. It is possible to launch the attack remotely. Furthermore, an exploit is available.

CVE-2025-13451 | SourceCodester Online Shop Project 1.0 /action.php Search sql injection

Post correlati

CVE-2024-3896 | Photo Gallery, Images, Slider in Rbs Image Gallery Plugin Gallery Title cross site scripting

CVE-2024-5223 | Post Grid Gutenberg Blocks and Blog Plugin up to 4.1.1 on WordPress cross site scripting

CVE-2025-20906 | Samsung Devices Android Application Component improper export of android application components

CVE-2024-2555 | SourceCodester Employee Task Management System 1.0 update-admin.php admin_id sql injection