CVE-2025-61246 | indieka900 online-shopping-system-php 1.0 master/review_action.php proId sql injection

Inserito da Angelo Barbosa | Gen 8, 2026 | CVE

A vulnerability has been found in indieka900 online-shopping-system-php 1.0 and classified as critical. Impacted is an unknown function of the file master/review_action.php. This manipulation of the argument proId causes sql injection.

This vulnerability is tracked as CVE-2025-61246. The attack is possible to be carried out remotely. No exploit exists.

CVE-2025-61246 | indieka900 online-shopping-system-php 1.0 master/review_action.php proId sql injection

Post correlati

CVE-2025-26359 | Nozomi Q-Free MaxTime up to 2.11.0 HTTP routes.lua missing authentication

CVE-2024-53623 | TP-Link ARCHER-C7 l_0_0.xml access control

CVE-2025-11015 | OGRECave Ogre up to 14.4.1 OgreSTBICodec.cpp STBIImageCodec::encode mismatched memory management routines (Issue 3446)

CVE-2024-40885 | Intel Server M20NTP BIOS UEFI Firmware use after free (intel-sa-01175)