CVE-2025-4173 – SourceCodester Online Eyewear Shop SQL Injection Vulnerability

May 1, 2025

CVE ID : CVE-2025-4173

Published : May 1, 2025, 5:15 p.m. | 2 hours, 11 minutes ago

Description : A vulnerability classified as critical was found in SourceCodester Online Eyewear Shop 1.0. Affected by this vulnerability is the function delete_cart of the file /oews/classes/Master.php?f=delete_cart. The manipulation of the argument ID leads to sql injection. The attack can be launched remotely. The exploit has been disclosed to the public and may be used.

Severity: 6.3 | MEDIUM

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-32881 – GoTenna Information Disclosure Vulnerability

Next Article Pion is a modern stack for web real-time communication

Upwork Freelancers vs Dedicated React.js Teams: What’s Better for Your Project in 2025?

Is Agile dead in the age of AI?

Top 15 Enterprise Use Cases That Justify Hiring Node.js Developers in 2025

The Core Model: Start FROM The Answer, Not WITH The Solution

Finally, a sleek gaming laptop I can take to the office (without sacrificing power)

These jobs face the highest risk of AI takeover, according to Microsoft

Apple’s tariff costs and iPhone sales are soaring – how long until device prices are too?

5 ways to successfully integrate AI agents into your workplace

Enhancing Laravel Queries with Reusable Scope Patterns

Enhancing Laravel Queries with Reusable Scope Patterns

Everything We Know About Livewire 4

Everything We Know About Livewire 4

YouTube wants to use AI to treat “teens as teens and adults as adults” — with the most age-appropriate experiences and protections

YouTube wants to use AI to treat “teens as teens and adults as adults” — with the most age-appropriate experiences and protections

Sam Altman is afraid of OpenAI’s GPT-5 creation — “The Manhattan Project feels very fast, like there are no adults in the room”

9 new features that arrived on the Windows 11 Insider Program during the second half of July 2025

CVE-2025-4173 – SourceCodester Online Eyewear Shop SQL Injection Vulnerability

This month in security with Tony Anscombe – July 2025 edition

WordPress AI Engine Plugin Bug Allows Remote Code Execution – Update Now

Overwatch 2: All available Heroes, abilities and items in Stadium Mode

Google Warns of Scattered Spider Attacks Targeting IT Support Teams at U.S. Insurance Firms

Tesla Model 3 VCSEC Vulnerability Allows Attackers to Execute Arbitrary Code

Google DeepMind Introduces AlphaEvolve: A Gemini-Powered Coding AI Agent for Algorithm Discovery and Scientific Optimization

Hideo Kojima’s “OD” is still in development with Xbox, at least for today

Intel could be prepping a new mid-range GPU, giving gamers another reason to skip NVIDIA’s RTX 5060

I ditched Spotlight on my Mac for this more powerful search tool – and it’s free

XO – configurable ESLint wrapper

CVE-2025-4173 – SourceCodester Online Eyewear Shop SQL Injection Vulnerability

Related Posts