CVE-2025-0196 – Exploitable SQL Injection Vulnerability in Code-Projects Point of Sales and Inventory Management System

1月 3, 2025
8:16 pm

CVE ID : CVE-2025-0196

Published : Jan. 3, 2025, 7:15 p.m. | 1 hour, 1 minute ago

Description : A vulnerability classified as critical has been found in code-projects Point of Sales and Inventory Management System 1.0. This affects an unknown part of the file /user/plist.php. The manipulation of the argument cat leads to sql injection. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used.

Severity: 6.3 | MEDIUM

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

CVE-2025-0196 – Exploitable SQL Injection Vulnerability in Code-Projects Point of Sales and Inventory Management System

Elvescore.io

Recent Posts

CVE-2024-13141 – “osuuu LightPicture Cross-Site Scripting”

CVE-2025-0221 – IOBit Protected Folder Null Pointer Dereference Vulnerability

CVE-2025-0220 – Trimble SPS851 Ethernet Configuration Menu Cross-Site Scripting Vulnerability

CVE-2024-13140 – Emlog Pro Cross-Site Scripting Vulnerability in Cover Upload Handler

CVE-2024-13138 – Wangl1989 MySiteForMe Unrestricted File Upload Vulnerability

CVE-2024-13139 – Wangl1989 Mysiteforme SSRF Vulnerability

CVE-2025-0196 – Exploitable SQL Injection Vulnerability in Code-Projects Point of Sales and Inventory Management System

CVE-2025-0196 – Exploitable SQL Injection Vulnerability in Code-Projects Point of Sales and Inventory Management System