CVE-2025-6315 – “Code-projects Online Shoe Store SQL Injection Vulnerability”

June 20, 2025

CVE ID : CVE-2025-6315

Published : June 20, 2025, 7:15 a.m. | 3 hours, 27 minutes ago

Description : A vulnerability was found in code-projects Online Shoe Store 1.0. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /cart2.php. The manipulation of the argument ID leads to sql injection. The attack can be launched remotely. The exploit has been disclosed to the public and may be used.

Severity: 7.3 | HIGH

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-6316 – Code-projects Online Shoe Store SQL Injection Vulnerability

Next Article CVE-2025-6314 – Campcodes Sales and Inventory System SQL Injection Vulnerability

This week in AI dev tools: Gemini 2.5 Pro and Flash GA, GitHub Copilot Spaces, and more (June 20, 2025)

Gemini 2.5 Pro and Flash are generally available and Gemini 2.5 Flash-Lite preview is announced

CSS Cascade Layers Vs. BEM Vs. Utility Classes: Specificity Control

IBM launches new integration to help unify AI security and governance

One of World of Warcraft’s deadliest entities makes a world-shattering return after nearly 20 years — and he’s city-sized

It feels like Blizzard has abandoned Diablo 2: Resurrected — but there’s one way to keep it alive for years to come

Steam’s performance tracking tool is becoming more like the Steam Deck’s — you can try it out right now

Borderlands 4 is killing off a tired “FOMO” trend — I hope other developers follow suit

Dr. Axel’s JavaScript flashcards

Dr. Axel’s JavaScript flashcards

Syntax-Highlight – Custom Element For Syntax Highlighting Content

WelsonJS – Build a Windows app on the Windows built-in JavaScript engine

One of World of Warcraft’s deadliest entities makes a world-shattering return after nearly 20 years — and he’s city-sized

One of World of Warcraft’s deadliest entities makes a world-shattering return after nearly 20 years — and he’s city-sized

It feels like Blizzard has abandoned Diablo 2: Resurrected — but there’s one way to keep it alive for years to come

Steam’s performance tracking tool is becoming more like the Steam Deck’s — you can try it out right now

CVE-2025-6315 – “Code-projects Online Shoe Store SQL Injection Vulnerability”

CVE-2025-49763: Apache Traffic Server Vulnerability Enables Memory Exhaustion Attacks

Critical Mattermost Flaw (CVE-2025-4981, CVSS 9.9) Allows RCE Via Path Traversal

Malbian is a Linux distribution for malware analysis and reverse engineering

CVE-2025-40915 – Mojolicious::Plugin::CSRF Weak Random Number Generation CSRF Vulnerability

WWE Cactus Jack x WWE Merchandise

Android 15 has a new requirement that could leave your phone behind

Master REST API Development with .NET 9

CISA Adds SAP NetWeaver Zero-Day CVE-2025-31324 to KEV Database

Servas is a self-hosted bookmark management tool

Google is talking to dolphins using Pixel phones and AI – and the video is delightful

CVE-2025-6315 – “Code-projects Online Shoe Store SQL Injection Vulnerability”

Related Posts