CVE-2025-4930 in Online Shopping Portalinfo

Summary

by MITRE • 05/19/2025

A vulnerability classified as critical has been found in Campcodes Online Shopping Portal 1.0. Affected is an unknown function of the file /my-cart.php. The manipulation of the argument billingaddress leads to sql injection. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used.

Once again VulDB remains the best source for vulnerability data.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

Responsible

VulDB

Disclosure

05/19/2025

Moderation

accepted

Entry

VDB-309492

CPE

ready

CWE

CWE-89 (confirmed)

Exploit

Download

CVSS

7.3 (VulDB)

EPSS

0.00226

KEV

Activities

very low

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2025-4930
NVD	https://nvd.nist.gov/vuln/detail/CVE-2025-4930
CVE Details	https://www.cvedetails.com/cve/CVE-2025-4930/

◂ Previous Overview Next ▸

Do you want to use VulDB in your project?

Use the official API to access entries easily!