CVE-2025-6307 | code-projects Online Shoe Store 1.0 edit_customer.php firstname sql injection

Inserito da Angelo Barbosa | Giu 19, 2025 | CVE

A vulnerability was found in code-projects Online Shoe Store 1.0. It has been rated as critical. This issue affects some unknown processing of the file /function/edit_customer.php. The manipulation of the argument firstname leads to sql injection.

The identification of this vulnerability is CVE-2025-6307. The attack may be initiated remotely. Furthermore, there is an exploit available.

Other parameters might be affected as well.

CVE-2025-6307 | code-projects Online Shoe Store 1.0 edit_customer.php firstname sql injection

Post correlati

CVE-2024-6849 | Preloader Plus Plugin up to 2.2.1 on WordPress SVG File Upload cross site scripting

CVE-2024-25603 | Liferay Portal/DXP DDMForm instanceId cross site scripting

CVE-2024-9554 | Sovell Smart Canteen System up to 3.0.7303.30513 Password Reset suanfa.py Check_ET_CheckPwdz201 authorization

CVE-2024-39488 | Linux Kernel up to 6.9.3 arm64 denial of service