CVE-2025-6937 | code-projects Simple Pizza Ordering System 1.0 /large.php ID sql injection

Inserito da Angelo Barbosa | Giu 30, 2025 | CVE

A vulnerability was found in code-projects Simple Pizza Ordering System 1.0. It has been declared as critical. This vulnerability affects unknown code of the file /large.php. The manipulation of the argument ID leads to sql injection.

This vulnerability was named CVE-2025-6937. The attack can be initiated remotely. Furthermore, there is an exploit available.

CVE-2025-6937 | code-projects Simple Pizza Ordering System 1.0 /large.php ID sql injection

Post correlati

CVE-2024-36468 | Zabbix up to 7.0.2rc1 Proxy zbx_snmp_cache_handle_engineid stack-based overflow

CVE-2024-1432 | DeepFaceLab pretrained DF.wf.288res.384.92.72.22 main.py apply_xseg deserialization

CVE-2024-28847 | open-metadata OpenMetadata up to 1.2.3 validateExpression code injection

CVE-2024-32758 | Johnson Controls exacqVision Client/exacqVision Server prior 24.06 inadequate encryption (icsa-24-214-01)