CVE-2025-1855 | PHPGurukul Online Shopping Portal 2.1 /product-details.php quality/price/value/name/summary/review sql injection

Inserito da Angelo Barbosa | Mar 2, 2025 | CVE

A vulnerability was found in PHPGurukul Online Shopping Portal 2.1. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /product-details.php. The manipulation of the argument quality/price/value/name/summary/review leads to sql injection.

This vulnerability is known as CVE-2025-1855. The attack can be launched remotely. Furthermore, there is an exploit available.

CVE-2025-1855 | PHPGurukul Online Shopping Portal 2.1 /product-details.php quality/price/value/name/summary/review sql injection

Post correlati

CVE-2024-0508 | ThemeIsle Orbit Fox Plugin up to 2.10.27 on WordPress Pricing Table Elementor Widget cross site scripting

CVE-2025-27402 | Enalean Tuleap Community Edition/Tuleap Enterprise Edition cross-site request forgery (GHSA-66pg-cpjf-2mfg)

CVE-2023-7161 | Netentsec NS-ASG Application Security Gateway 6.3.1 Login index.php check_VirtualSiteId sql injection

CVE-2024-21203 | Oracle MySQL Cluster/MySQL Server up to 7.5.35/7.6.31/8.0.39/8.4.2/9.0.1 FTS denial of service