CVE-2025-4924 – SourceCodester Client Database Management System SQL Injection Vulnerability

May 19, 2025

CVE ID : CVE-2025-4924

Published : May 19, 2025, 9:15 a.m. | 2 hours, 1 minute ago

Description : A vulnerability, which was classified as critical, was found in SourceCodester Client Database Management System 1.0. Affected is an unknown function of the file /user_void_transaction.php. The manipulation of the argument order_id leads to sql injection. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used.

Severity: 7.3 | HIGH

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-4925 – PHPGurukul Daily Expense Tracker System SQL Injection Vulnerability

Next Article CVE-2025-41429 – A-Blog CMS Session Hijacking Vulnerability

10 Top Node.js Development Companies for Enterprise-Scale Projects (2025-2026 Ranked & Reviewed)

12 Must-Know Cost Factors When Hiring Node.js Developers for Your Enterprise

Mirantis reveals Lens Prism, an AI copilot for operating Kubernetes clusters

Avoid these common platform engineering mistakes

Microsoft Gaming studios head Matt Booty says “overall portfolio strategy is unchanged” — with more than 40 games in production

Capcom reports that its Steam game sales have risen massively — despite flagship titles like Monster Hunter Wilds receiving profuse backlash from PC players

Cloudflare is fighting to safeguard “the future of the web itself” — standing directly in the way of leading AI firms

Microsoft reportedly lacks the know-how to fully leverage OpenAI’s tech — despite holding IP rights

Laravel in the First Half of 2025

Laravel in the First Half of 2025

PHP 8.5.0 Alpha 1 available for testing

Recording cross browser compatible media

GOnnect – easy to use VoIP client

GOnnect – easy to use VoIP client

Gnuinos – spin of Devuan Linux

5 Best Free and Open Source Backend Electronic Circuit Simulators

CVE-2025-4924 – SourceCodester Client Database Management System SQL Injection Vulnerability

Duizenden NetScaler-servers kwetsbaar voor CitrixBleed2, details snel openbaar

CVE-2025-23970 – Aonetheme Service Finder Booking Privilege Escalation

State-of-the-art video and image generation with Veo 2 and Imagen 3

CVE-2025-38092 – Linux Kernel ksmbd Null Pointer Dereference Vulnerability

Gemini 2.5: Our most intelligent models are getting even better

CVE-2025-47291 – Containerd CRI Kubernetes Cgroup Bypass Denial of Service

Notepad++ Vulnerability Let Attacker Gains Complete System Control – PoC Released

CVE-2025-32407 – Samsung Internet for Galaxy Watch TLS Certificate Validation Bypass

CVE-2025-43865 – React Router HTTP Header Injection Vulnerability

Microsoft adds RFT & SFT support in Azure AI Foundry for smarter model fine-tuning

CVE-2025-4924 – SourceCodester Client Database Management System SQL Injection Vulnerability

Related Posts