CVE-2025-6306 | code-projects Online Shoe Store 1.0 /admin/admin_index.php Username sql injection

Inserito da Angelo Barbosa | Giu 19, 2025 | CVE

A vulnerability was found in code-projects Online Shoe Store 1.0. It has been declared as critical. This vulnerability affects unknown code of the file /admin/admin_index.php. The manipulation of the argument Username leads to sql injection.

This vulnerability was named CVE-2025-6306. The attack can be initiated remotely. Furthermore, there is an exploit available.

CVE-2025-6306 | code-projects Online Shoe Store 1.0 /admin/admin_index.php Username sql injection

Post correlati

CVE-2022-47532 | FileRun 20220519 ?module=users&section=cpanel&page=list dir sql injection (usd-2022-0064)

CVE-2024-29885 | Stimulsoft Reports up to 5.2.2 canView access control

CVE-2024-25723 | ZenML up to 0.42.1/0.43.0/0.44.3/0.46.6 on Python REST API Endpoint activate Privilege Escalation

CVE-2024-34447 | Bouncy Castle up to 1.77 certificate validation