CVE-2025-13451 in Online Shop Projectinfo

Zusammenfassung

von MITRE • 20.11.2025

A vulnerability was identified in SourceCodester Online Shop Project 1.0. The affected element is an unknown function of the file /action.php. Such manipulation of the argument Search leads to sql injection. It is possible to launch the attack remotely. The exploit is publicly available and might be used.

If you want to get best quality of vulnerability data, you may have to visit VulDB.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

Zuständig

VulDB

Veröffentlichung

20.11.2025

Moderieren

akzeptiert

Eintrag

VDB-333021

CPE

bereit

CWE

CWE-89 (bestätigt)

Exploit

Download

CVSS

9.8 (NVD)

EPSS

0.00028

KEV

nein

Aktivitäten

very low

Sektor

Police, Telecommunication, ...

Quellen

MITRE	https://www.cve.org/CVERecord?id=CVE-2025-13451
NVD	https://nvd.nist.gov/vuln/detail/CVE-2025-13451
CVE Details	https://www.cvedetails.com/cve/CVE-2025-13451/

◂ Zurück Übersicht Weiter ▸

Might our Artificial Intelligence support you?

Check our Alexa App!