ГлавнаяУязвимости → CVE-2025-11424
7.3высокая

CVE-2025-11424

Описание

A vulnerability was determined in code-projects Web-Based Inventory and POS System 1.0. This impacts an unknown function of the file /login.php. Executing manipulation of the argument emailid can lead to sql injection. The attack may be performed from remote. The exploit has been publicly disclosed and may be utilized.

Затрагиваемое ПО
Fabian Web-based inventory and pos system
CVSS
Балл7.3 — высокая
ВекторCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L
Источники
https://code-projects.org/https://github.com/Real-Rio/vulnreport/blob/main/SQL6.mdhttps://vuldb.com/?ctiid.327359https://vuldb.com/?id.327359https://vuldb.com/?submit.666209https://github.com/Real-Rio/vulnreport/blob/main/SQL6.md