CVE-2025-1956 | code-projects Shopping Portal 1.0 Login index.php password sql injection

Inserito da Angelo Barbosa | Mar 4, 2025 | CVE

A vulnerability classified as critical has been found in code-projects Shopping Portal 1.0. This affects an unknown part of the file /Shopping/Admin/index.php of the component Login. The manipulation of the argument password leads to sql injection.

This vulnerability is uniquely identified as CVE-2025-1956. It is possible to initiate the attack remotely. Furthermore, there is an exploit available.

CVE-2025-1956 | code-projects Shopping Portal 1.0 Login index.php password sql injection

Post correlati

CVE-2023-49922 | Elastic Beats up to 7.17.15/8.11.2 HTTP Status Code log file

CVE-2023-6612 | Totolink X5000R 9.1.0cu.2300_B20230112 /cgi-bin/cstecgi.cgi os command injection

CVE-2024-46890 | Siemens SINEC INS up to 1.0 SP2 Update 2 os command injection (ssa-915275)

CVE-2024-1072 | SeedProd Website Builder Plugin up to 6.15.21 on WordPress seedprod_lite_new_lpage authorization