CVE-2025-4313 | SourceCodester Advanced Web Store 1.0 admin_addnew_product.php txtProdId sql injection

Inserito da Angelo Barbosa | Mag 5, 2025 | CVE

A vulnerability, which was classified as critical, was found in SourceCodester Advanced Web Store 1.0. Affected is an unknown function of the file /admin/admin_addnew_product.php. The manipulation of the argument txtProdId leads to sql injection.

This vulnerability is traded as CVE-2025-4313. It is possible to launch the attack remotely. Furthermore, there is an exploit available.

CVE-2025-4313 | SourceCodester Advanced Web Store 1.0 admin_addnew_product.php txtProdId sql injection

Post correlati

CVE-2024-2258 | 10Web Form Maker Plugin up to 1.15.24 on WordPress cross site scripting

CVE-2024-50206 | Linux Kernel up to 6.11.5 mtk_eth_soc memory corruption (68cd084e3ec1/88806efc034a)

CVE-2024-8780 | SYSCOM Group OMFLOW up to 1.2.1.2 Password Hash information disclosure

CVE-2024-48144 | Fusion Chat Chat AI Assistant Ask Me Anything 1.2.4.0 Chatbox injection