Lucene search
+L

5 matches found

OSV
OSV
added 2025/06/20 4:15 a.m.6 views

CVE-2025-6304

A vulnerability was found in code-projects Online Shoe Store 1.0 and classified as critical. Affected by this issue is some unknown functionality of the file /cart.php. The manipulation of the argument qty leads to sql injection. The attack may be launched remotely. The exploit has been disclosed...

9.8CVSS5.8AI score0.00394EPSS
Exploits1References5
Circl
Circl
added 2025/06/20 3:43 a.m.14 views

CVE-2025-6304

creationtimestamp| type| source ---|---|--- 2025-06-20 03:43:25+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/18900 2025-06-20 04:32:08+00:00| published-proof-of-concept| Telegram/-mtAxQJOdz-o0G4wjO--3Y9pj8P3DYCKzD3tpLNxcduUGA 2025-06-20 07:43:24+00:00| seen|...

9.8CVSS7.3AI score0.00394EPSS
Exploits1References2
CVE
CVE
added 2025/06/20 3:31 a.m.32 views

CVE-2025-6304

The CVE-2025-6304 entry concerns code-projects Online Shoe Store 1.0, where the file /cart.php contains a vulnerable parameter qty[] that enables SQL injection. Multiple connected sources (CNVD/CNNVD/NVD etc.) confirm this SQL injection vector can be exploited remotely and that the exploit has be...

9.8CVSS7.5AI score0.00394EPSS
Exploits1References5Affected Software1
Vulnrichment
Vulnrichment
added 2025/06/20 3:31 a.m.2 views

CVE-2025-6304 code-projects Online Shoe Store cart.php sql injection

A vulnerability was found in code-projects Online Shoe Store 1.0 and classified as critical. Affected by this issue is some unknown functionality of the file /cart.php. The manipulation of the argument qty leads to sql injection. The attack may be launched remotely. The exploit has been disclosed...

7.5CVSS7.6AI score0.00394EPSS
Exploits1References5
Cvelist
Cvelist
added 2025/06/20 3:31 a.m.13 views

CVE-2025-6304 code-projects Online Shoe Store cart.php sql injection

A vulnerability was found in code-projects Online Shoe Store 1.0 and classified as critical. Affected by this issue is some unknown functionality of the file /cart.php. The manipulation of the argument qty leads to sql injection. The attack may be launched remotely. The exploit has been disclosed...

7.5CVSS0.00394EPSS
Exploits1References5
Rows per page
Query Builder