CVE-2025-10688
SourceCodester Pet Grooming Management Software v1.0 contains a SQL injection vulnerability in /admin/operation/paid.php, triggered by manipulating the insta_amt parameter (and possibly inv_no). The flaw allows remote exploitation, and public exploitation information exists. Affected component is...