chenxmi

1 exploit Active since Oct 2025
CVE-2025-11558 WRITEUP HIGH WRITEUP
code-projects E-Commerce Website 1.0 - SQL Injection via Search Parameter
A vulnerability was found in code-projects E-Commerce Website 1.0. Impacted is an unknown function of the file /pages/user_index_search.php. Performing manipulation of the argument Search results in sql injection. The attack is possible to be carried out remotely. The exploit has been made public and could be used.
CVSS 7.3