CVE-2025-7612 – “Code-projects Mobile Shop SQL Injection Vulnerability”

July 14, 2025

CVE ID : CVE-2025-7612

Published : July 14, 2025, 3:15 p.m. | 3 hours, 34 minutes ago

Description : A vulnerability was found in code-projects Mobile Shop 1.0. It has been declared as critical. This vulnerability affects unknown code of the file /login.php. The manipulation of the argument email leads to sql injection. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used.

Severity: 7.3 | HIGH

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-7613 – TOTOLINK T6 Command Injection Vulnerability in CloudSrvVersionCheck

Next Article CVE-2025-7597 – Tenda AX1803 Stack-Based Buffer Overflow

Top 10 Use Cases of Vibe Coding in Large-Scale Node.js Applications

Cloudsmith launches ML Model Registry to provide a single source of truth for AI models and datasets

Kong Acquires OpenMeter to Unlock AI and API Monetization for the Agentic Era

Microsoft Graph CLI to be retired

5 tips for writing better custom instructions for Copilot

More than €1.2 billion raised by EIC Scaling Club members

7 Must-Know GSAP Animation Tips for Creative Developers

CodeSOD: Adding to the Argument

Laracon AU 2025 Talk Titles Revealed

Laracon AU 2025 Talk Titles Revealed

Stop Writing Bad Controllers: Laravel Custom Collections Transform Your Code

Handle ownership relationships between Eloquent models with Laravel Ownable

Lenovo Legion Go 2 confirmed with Ryzen Z2 Extreme, 1200p OLED 144Hz display & 74Wh battery

Lenovo Legion Go 2 confirmed with Ryzen Z2 Extreme, 1200p OLED 144Hz display & 74Wh battery

How to Open Ports in Firewall on Windows Server

Google TV Remote Not Working? 5 Quick Fixes

CVE-2025-7612 – “Code-projects Mobile Shop SQL Injection Vulnerability”

Malicious npm Package nodejs-smtp Mimics Nodemailer, Targets Atomic and Exodus Wallets

Silver Fox Exploits Microsoft-Signed WatchDog Driver to Deploy ValleyRAT Malware

Understanding concepts in Event Driven Architectures (EDA)

CVE-2025-5750 – WOLFBOX Level 2 EV Charger TuyaSvcDevosActivateResultParse Heap Buffer Overflow Remote Code Execution Vulnerability

AWS machine learning supports Scuderia Ferrari HP pit stop analysis

CVE-2025-55583 – D-Link DIR-868L Command Injection Vulnerability

Techland drops a new trailer for Dying Light: The Beast with a release date during Summer Game Fest

So your friend has been hacked: Could you be next?

CVE-2025-53763 – Azure Databricks Privilege Escalation Vulnerability

Linus Torvalds torna alla tastiera meccanica: il valore del feedback nella digitazione per chi sviluppa

CVE-2025-7612 – “Code-projects Mobile Shop SQL Injection Vulnerability”

Related Posts