ГлавнаяУязвимости → CVE-2025-15408
7.3высокая

CVE-2025-15408

Описание

A vulnerability was found in code-projects Online Guitar Store 1.0. Affected is an unknown function of the file /admin/Create_product.php. Performing a manipulation of the argument dre_title results in sql injection. The attack is possible to be carried out remotely. The exploit has been made public and could be used.

Затрагиваемое ПО
Anisha Online guitar store
CVSS
Балл7.3 — высокая
ВекторCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L
Источники
https://code-projects.org/https://github.com/jjjjj-zr/jjjjjzr19/issues/2https://vuldb.com/?ctiid.339328https://vuldb.com/?id.339328https://vuldb.com/?submit.728392