hackergovind/CVE-2025-61246

Releases0

CVE-2025-61246: SQL Injection vulnerability PoC in Online Shopping System PHP

CVE History

CVE	Published	CVSS v3	CVSS v2
CVE-2025-61246 ↗	Jan 8, 2026Thursday, 8 January 2026, 17:15	9.8 CRITICAL	—
indieka900 online-shopping-system-php 1.0 is vulnerable to SQL Injection in master/review_action.php via the proId parameter.