exploitDog

CVE-2025-69564

Опубликовано: 27 янв. 2026

Источник: nvd

CVSS3: 9.8

EPSS Низкий

Описание

code-projects Mobile Shop Management System 1.0 is vulnerable to SQL Injection in /ExAddNewUser.php via the Name, Address, email, UserName, Password, confirm_password, Role, Branch, and Activate parameters.

Ссылки

https://gist.github.com/lih28984-commits/87eacfc32186020a04e03a2af448723f
Third Party Advisory
https://gitee.com/Z_180yc/zyy/issues/IDCEJP
Exploit
Issue Tracking
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:fabian:mobile_shop_management_system:1.0:*:*:*:*:*:*:*

EPSS

Процентиль: 10%

0.00035

Низкий

9.8 Critical

CVSS3

Дефекты

CWE-94

Связанные уязвимости

GHSA-r8w3-p4p4-x3j6

CVSS3: 9.8

github

11 дней назад

code-projects Mobile Shop Management System 1.0 is vulnerable to SQL Injection in /ExAddNewUser.php via the Name, Address, email, UserName, Password, confirm_password, Role, Branch, and Activate parameters.

EPSS

Процентиль: 10%

0.00035

Низкий

9.8 Critical

CVSS3

Дефекты

CWE-94