CVE-2025-15242 | Teknoloji dünyasından en güncel haberleri ve güvenlikle ilgili gelişmeleri takip edin.

A vulnerability was detected in PHPEMS up to 11.0. The impacted element is an unknown function of the component Coupon Handler. Performing a manipulation result…
Low CVSS: 2.3

CVE-2025-15242

A vulnerability was detected in PHPEMS up to 11.0. The impacted element is an unknown function of the component Coupon Handler. Performing a manipulation results in race condition. The attack can be initiated remotely. The complexity of an attack is rather high. The exploitability is regarded as difficult. The exploit is now public and may be used.
Vendor
Phpems
Product
Phpems
CWE
CWE-362
Yayın Tarihi
2025-12-30 10:15:51
Güncelleme
2026-02-24 07:17:05
Source Identifier
cna@vuldb.com
KEV Date Added
-

Kategoriler

CWE-362 Phpems LOW Phpems 2025

Referanslar

https://byebydoggy.github.io/post/2025/1229-phpems-coupon-recharge-race-condition-poc/ https://vuldb.com/?ctiid.338632 https://vuldb.com/?id.338632 https://vuldb.com/?submit.725661