CVE-2025-6489 – iSourcecode Agri-Trading Online Shopping System SQL Injection Vulnerability

June 22, 2025

CVE ID : CVE-2025-6489

Published : June 22, 2025, 7:15 p.m. | 5 hours, 39 minutes ago

Description : A vulnerability has been found in itsourcecode Agri-Trading Online Shopping System 1.0 and classified as critical. This vulnerability affects unknown code of the file /transactionsave.php. The manipulation of the argument del leads to sql injection. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used.

Severity: 7.3 | HIGH

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-6490 – Nokogiri Heap-Based Buffer Overflow Vulnerability

Next Article CVE-2025-6486 – TOTOLINK A3002R Stack-Based Buffer Overflow Vulnerability

Highlights

CVE-2025-20217 – Cisco Secure Firewall Threat Defense (FTD) Snort 3 Packet Inspection Denial of Service

August 14, 2025

CVE ID : CVE-2025-20217

Published : Aug. 14, 2025, 5:15 p.m. | 6 hours, 49 minutes ago

Description : A vulnerability in the packet inspection functionality of the Snort 3 Detection Engine of Cisco Secure Firewall Threat Defense (FTD) Software could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on an affected device.

This vulnerability is due to incorrect processing of traffic that is inspected by an affected device. An attacker could exploit this vulnerability by sending crafted traffic through the affected device. A successful exploit could allow the attacker to cause the affected device to enter an infinite loop while inspecting traffic, resulting in a DoS condition. The system watchdog will restart the Snort process automatically.

Severity: 8.6 | HIGH

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

CodeSOD: Identify a Nap

Ambient Animations In Web Design: Principles And Implementation (Part 1)

Benchmarking AI-assisted developers (and their tools) for superior AI governance

Digital.ai launches White-box Cryptography Agent to enable stronger application security

Development Release: MX Linux 25 Beta 1

DistroWatch Weekly, Issue 1140

Distribution Release: DietPi 9.17

Development Release: Zorin OS 18 Beta

Stop using .reverse().find(): meet findLast()

Stop using .reverse().find(): meet findLast()

@ts-ignore is almost always the worst option

MutativeJS v1.3.0 is out with massive performance gains

How I Configure Polybar to Customize My Linux Desktop

How I Configure Polybar to Customize My Linux Desktop

Development Release: MX Linux 25 Beta 1

DistroWatch Weekly, Issue 1140

CVE-2025-6489 – iSourcecode Agri-Trading Online Shopping System SQL Injection Vulnerability

Cursor AI Code Editor Flaw Enables Silent Code Execution via Malicious Repositories

Introducing HybridPetya: Petya/NotPetya copycat with UEFI Secure Boot bypass

This week in AI dev tools: A2A donated to Linux Foundation, OpenAI adds Deep Research to API, and more (June 27, 2025)

Tatuin – task aggregation tool

Meta just gave its smart glasses a major AI power-up, and Apple is now racing to catch up.

CVE-2025-3759 – Netgear IGD Unauthenticated Configuration Change Vulnerability

CVE-2025-20217 – Cisco Secure Firewall Threat Defense (FTD) Snort 3 Packet Inspection Denial of Service

Mirantis reveals Lens Prism, an AI copilot for operating Kubernetes clusters

Apple Backports Critical Fixes for 3 Recent 0-Days Impacting Older iOS and macOS Devices

CVE-2024-13984 – QiAnXin TianQing Management Center RPTSVR Path Traversal Vulnerability

CVE-2025-6489 – iSourcecode Agri-Trading Online Shopping System SQL Injection Vulnerability

Related Posts