2 matches found
CVE-2025-12292
A vulnerability was determined in SourceCodester Point of Sales 1.0. This vulnerability affects unknown code of the file /index.php. This manipulation of the argument Username causes sql injection. It is possible to initiate the attack remotely. The exploit has been publicly disclosed and may be...
CVE-2025-12292
SourceCodester Point of Sales 1.0 contains a SQL injection vulnerability in /index.php through manipulation of the Username parameter. This allows remote exploitation with no user interaction, as described across multiple sources (NVD, Red Hat, ENISA, CVE records). The vulnerability affects unkno...