CVE-2025-11509 code-projects E-Commerce Website product_add.php sql injection

A vulnerability was detected in code-projects E-Commerce Website 1.0. This impacts an unknown function of the file /pages/productadd.php. Performing manipulation of the argument prodname results in sql injection. The attack may be initiated remotely. The exploit is now public and may be used...

EUVD-2021-15986

Malware in sbrugna...

CVE-2025-7469 Campcodes Sales and Inventory System product_add.php sql injection

A vulnerability was found in Campcodes Sales and Inventory System 1.0 and classified as critical. This issue affects some unknown processing of the file /pages/productadd.php. The manipulation of the argument prodname leads to sql injection. The attack may be initiated remotely. The exploit has...

CampCodes Sales and Inventory System 注入漏洞

CampCodes Sales and Inventory System is a sales and inventory system from CampCodes, Inc. An injection vulnerability exists in Campcodes Sales and Inventory System version 1.0, which stems from an incorrect manipulation of the parameter prodname in the file /pages/productadd.php that results in S...

CVE-2025-4885 itsourcecode Sales and Inventory System product_add.php sql injection

A vulnerability classified as critical has been found in itsourcecode Sales and Inventory System 1.0. Affected is an unknown function of the file /pages/productadd.php. The manipulation of the argument serial leads to sql injection. It is possible to launch the attack remotely. The exploit has be...

Sql injection

SQL injection in the getip function in conn/function.php in ??100-???????? 1.1 allows remote attackers to inject arbitrary SQL commands via the X-Forwarded-For header to admin/productadd.php...