CVE-2025-0207 | code-projects Online Shoe Store 1.0 /function/login.php password sql injection

Posted by Angelo Barbosa | Jan 3, 2025 | CVE

A vulnerability, which was classified as critical, has been found in code-projects Online Shoe Store 1.0. Affected by this issue is some unknown functionality of the file /function/login.php. The manipulation of the argument password leads to sql injection.

This vulnerability is handled as CVE-2025-0207. The attack may be launched remotely. Furthermore, there is an exploit available.

CVE-2025-0207 | code-projects Online Shoe Store 1.0 /function/login.php password sql injection

Related Posts

CVE-2024-29878 | Sentrifugo 3.2 URL add description cross site scripting

CVE-2024-30555 | Sayan Datta Ultimate Social Comments Plugin up to 1.4.8 on WordPress cross site scripting

CVE-2025-20033 | Mattermost up to 9.11.5/10.0.3/10.1.3/10.2.0/10.3.0 improper validation of specified type of input

CVE-2023-42733 | Unisoc S8000 Telephony Service information disclosure