Vulnerabilities

CVE-2025-11070

by Fred · 27/09/2025

A vulnerability was identified in Projectworlds Online Shopping System 1.0. This affects an unknown part of the file /store/cart_add.php. Such manipulation of the argument ID leads to sql injection. The attack may be performed from remote. The exploit is publicly available and might be used.

More information : https://github.com/underatted/CVE/issues/5

Similar

Tags: Cybersecurity Alert