CVE-2025-51968 | PuneethReddyHC ReddyHC Online Shopping System Advanced 1.0 POST Parameter action.php proId sql injection

Inserito da Angelo Barbosa | Ago 28, 2025 | CVE

A vulnerability was found in PuneethReddyHC ReddyHC Online Shopping System Advanced 1.0. It has been declared as critical. This issue affects some unknown processing of the file action.php of the component POST Parameter Handler. Executing manipulation of the argument proId can lead to sql injection.

The identification of this vulnerability is CVE-2025-51968. The attack may be launched remotely. There is no exploit available.

CVE-2025-51968 | PuneethReddyHC ReddyHC Online Shopping System Advanced 1.0 POST Parameter action.php proId sql injection

Post correlati

CVE-2025-10277 | YunaiV yudao-cloud up to 2025.09 /crm/receivable/submit ID improper authorization

CVE-2024-43907 | Linux Kernel up to 5.10.223/5.15.164/6.1.104/6.6.45/6.10.4 AMD GPU apply_state_adjust_rules null pointer dereference

CVE-2025-26326 | NVDA remote connection add-ons 2024.4.1/2024.4.2 weak password

CVE-2024-0259 | Fortra Robot Schedule Enterprise Agent up to 3.03 on Windows default permission