CVE-2025-15408 | code-projects Online Guitar Store 1.0 Create_product.php dre_title sql injection

Inserito da Angelo Barbosa | Gen 1, 2026 | CVE

A vulnerability identified as critical has been detected in code-projects Online Guitar Store 1.0. Affected is an unknown function of the file /admin/Create_product.php. Performing manipulation of the argument dre_title results in sql injection.

This vulnerability is reported as CVE-2025-15408. The attack is possible to be carried out remotely. Moreover, an exploit is present.

CVE-2025-15408 | code-projects Online Guitar Store 1.0 Create_product.php dre_title sql injection

Post correlati

CVE-2024-32084 | Gold Plugins Before and After Plugin up to 3.9 on WordPress cross-site request forgery

CVE-2024-45520 | WithSecure Atlant 1.0.35-1 PE32 File Scanning memory corruption

CVE-2024-41334 | DrayTek Vigor LTE200 APPE Module certificate validation

CVE-2024-45715 | SolarWinds Platform up to 2024.2.1 Edit cross site scripting