ГлавнаяУязвимости → CVE-2025-12292
7.3высокая

CVE-2025-12292

Описание

A vulnerability was determined in SourceCodester Point of Sales 1.0. This vulnerability affects unknown code of the file /index.php. This manipulation of the argument Username causes sql injection. It is possible to initiate the attack remotely. The exploit has been publicly disclosed and may be utilized.

Затрагиваемое ПО
Janobe Point of sales
CVSS
Балл7.3 — высокая
ВекторCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L
Источники
https://github.com/J-Fy2767/CVE/issues/2https://vuldb.com/?ctiid.329960https://vuldb.com/?id.329960https://vuldb.com/?submit.675847https://www.sourcecodester.com/