ГлавнаяУязвимости → CVE-2025-14248
7.3высокая

CVE-2025-14248

Описание

A vulnerability was identified in code-projects Simple Shopping Cart 1.0. Impacted is an unknown function of the file /adminlogin.php. The manipulation of the argument admin_username leads to sql injection. The attack is possible to be carried out remotely. The exploit is publicly available and might be used.

Затрагиваемое ПО
Fabian Simple shopping cart
CVSS
Балл7.3 — высокая
ВекторCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L
Источники
https://code-projects.org/https://github.com/zzb1388/cve/issues/92https://vuldb.com/?ctiid.334758https://vuldb.com/?id.334758https://vuldb.com/?submit.702464https://github.com/zzb1388/cve/issues/92