ГлавнаяУязвимости → CVE-2025-10802
7.3высокая

CVE-2025-10802

Описание

A flaw has been found in code-projects Online Bidding System 1.0. Affected is an unknown function of the file /administrator/remove.php. This manipulation of the argument ID causes sql injection. It is possible to initiate the attack remotely. The exploit has been published and may be used.

Затрагиваемое ПО
Fabian Online bidding system
CVSS
Балл7.3 — высокая
ВекторCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L
Источники
https://code-projects.org/https://github.com/peri0d/my_cve/blob/main/ONLINE-BIDDING-SYSTEM-Project-V1.0-remove.php-SQL-injection.mdhttps://vuldb.com/?ctiid.325160https://vuldb.com/?id.325160https://vuldb.com/?submit.654164