CVE-2025-7409: SQL Injection in code-projects Mobile Shop
A vulnerability was found in code-projects Mobile Shop 1.0 and classified as critical. This issue affects some unknown processing of the file /LoginAsAdmin.php. The manipulation of the argument email leads to sql injection. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used.
CVE-2025-7409: SQL Injection in code-projects Mobile Shop
Description
A vulnerability was found in code-projects Mobile Shop 1.0 and classified as critical. This issue affects some unknown processing of the file /LoginAsAdmin.php. The manipulation of the argument email leads to sql injection. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used.
Technical Details
- Data Version
- 5.1
- Assigner Short Name
- VulDB
- Date Reserved
- 2025-07-10T07:27:11.965Z
- Cvss Version
- 4.0
- State
- PUBLISHED
Threat ID: 686fee50a83201eaaca8ca99
Added to database: 7/10/2025, 4:46:08 PM
Last updated: 7/10/2025, 4:46:08 PM
Views: 1
Related Threats
CVE-2025-49464: CWE-287 Improper Authentication in Zoom Communications Inc. Zoom Clients for macOS
MediumCVE-2025-49463: CWE-691: Insufficient Control Flow Management in Zoom Communications Inc. Zoom Clients for iOS
MediumCVE-2025-49462: CWE-352 Cross-Site Request Forgery (CSRF) in Zoom Communications Inc. Zoom Clients
LowCVE-2025-46789: CWE-120 Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') in Zoom Communications Inc. Zoom Clients for Windows
MediumCVE-2025-46788: CWE-295 Improper Certificate Validation in Zoom Communications Inc. Zoom Workplace for Linux
HighActions
Need enhanced features?
Contact root@offseq.com for Pro access with improved analysis and higher rate limits.