CVE-2025-6484 – Code-projects Online Shopping Store SQL Injection

June 22, 2025

CVE ID : CVE-2025-6484

Published : June 22, 2025, 5:15 p.m. | 7 hours, 39 minutes ago

Description : A vulnerability was found in code-projects Online Shopping Store 1.0 and classified as critical. Affected by this issue is some unknown functionality of the file /action.php. The manipulation of the argument cat_id/brand_id/keyword/proId/pid leads to sql injection. The attack may be launched remotely. The exploit has been disclosed to the public and may be used.

Severity: 4.7 | MEDIUM

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-6485 – TOTOLINK A3002R OS Command Injection Vulnerability

Next Article CVE-2025-6482 – “Simple Pizza Ordering System SQL Injection Vulnerability”

Highlights

CVE-2025-7214 – FNKvision FNK-GU2 MD5 Cryptographic Algorithm Vulnerability

July 9, 2025

CVE ID : CVE-2025-7214

Published : July 9, 2025, 4:16 a.m. | 2 hours, 21 minutes ago

Description : A vulnerability classified as problematic was found in FNKvision FNK-GU2 up to 40.1.7. Affected by this vulnerability is an unknown functionality of the file /etc/shadow of the component MD5. The manipulation leads to risky cryptographic algorithm. It is possible to launch the attack on the physical device. The complexity of an attack is rather high. The exploitation appears to be difficult. The exploit has been disclosed to the public and may be used.

Severity: 1.6 | LOW

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

“It’s not even funny anymore.” Helldivers 2 players are putting the underwhelming new Warbond on blast, and I’m with them

May 10, 2025

The Portrait’s Grin

June 11, 2025

Four VS Code Extensions For Laravel/PHP Projects

May 16, 2025

Elastic simplifies log analytics for SREs and developers with launch of Log Essentials

OpenAI launches GPT-5

Melissa brings its data quality solutions to Azure with new SSIS integration

Automating Design Systems: Tips And Resources For Getting Started

This $180 mini projector has no business being this good for the price

GPT-5 is finally here, and you can access it for free today – no subscription needed

Changing this Android setting instantly doubled my phone speed (Samsung and Google models included)

ChatGPT can now talk nerdy to you – plus more personalities and other upgrades beyond GPT-5

Advanced Application Architecture through Laravel’s Service Container Management

Advanced Application Architecture through Laravel’s Service Container Management

Switch Between Personas in Laravel With the MultiPersona Package

AI-Driven Smart Tagging and Metadata in AEM Assets

Bill Gates on AI’s Impact: ‘Be Curious, Read, and Use the Latest Tools’

Bill Gates on AI’s Impact: ‘Be Curious, Read, and Use the Latest Tools’

Halo Infinite’s Fall Update: New Features and Modes to Revive the Game?

Forza Motorsport’s Future in Jeopardy: Fans Demand Clarity from Microsoft

CVE-2025-6484 – Code-projects Online Shopping Store SQL Injection

Microsoft to Pull Plug on Shared EWS Access in Hybrid Exchange by October

Google Confirms Salesforce Database Breach by ShinyHunters Group

BrosTrend AX3000 WiFi Range Extender & Wi-Fi to Gigabit Ethernet Adapter Review

CVE-2025-6707 – MongoDB Privilege Escalation Vulnerability

My favorite 2025 laptop is perfectly priced thanks to this anti-Prime Day deal — It has a number pad and a gorgeous AMOLED touchscreen

CVE-2025-5245 – GNU Binutils Debug Type Samep Memory Corruption Vulnerability

CVE-2025-7214 – FNKvision FNK-GU2 MD5 Cryptographic Algorithm Vulnerability

“It’s not even funny anymore.” Helldivers 2 players are putting the underwhelming new Warbond on blast, and I’m with them

The Portrait’s Grin

Four VS Code Extensions For Laravel/PHP Projects

CVE-2025-6484 – Code-projects Online Shopping Store SQL Injection

Related Posts