CVE-2025-15410

Medium CVSS: 6.9

A vulnerability was identified in code-projects Online Guitar Store 1.0. Affected by this issue is some unknown functionality of the file /login.php. The manipulation of the argument L_email leads to sql injection. It is possible to initiate the attack remotely. The exploit is publicly available and might be used.

Vendor

Anisha

Product

Online Guitar Store

CWE

CWE-74

Yayın Tarihi

2026-01-01 19:15:53

Güncelleme

2026-01-06 18:11:07

Source Identifier

cna@vuldb.com

KEV Date Added

Kategoriler

CWE-74 Online Guitar Store MEDIUM Anisha 2026

Referanslar

https://code-projects.org/ https://github.com/jjjjj-zr/jjjjjzr19/issues/4 https://vuldb.com/?ctiid.339330 https://vuldb.com/?id.339330 https://vuldb.com/?submit.728394

Benzer Kayıtlar

Medium

CVE-2025-15409

A vulnerability was determined in code-projects Online Guitar Store 1.0. Affected by this vulnerability is an unknown fu…

Medium

CVE-2025-15407

A vulnerability has been found in code-projects Online Guitar Store 1.0. This impacts an unknown function of the file /a…

Medium

CVE-2025-15408

A vulnerability was found in code-projects Online Guitar Store 1.0. Affected is an unknown function of the file /admin/C…

Medium

CVE-2025-15049

A vulnerability was identified in code-projects Online Farm System 1.0. Affected is an unknown function of the file /add…

Medium

CVE-2025-14939

A vulnerability was found in code-projects Online Appointment Booking System 1.0. Impacted is an unknown function of the…

Medium

CVE-2025-14833

A security flaw has been discovered in code-projects Online Appointment Booking System 1.0. The impacted element is an u…