CVE Details
Basic Information
| Title | code-projects Food Distributor Site login.php sql injection |
|---|---|
| Type | cve |
| Published | 2025-07-08T12:32:05.719Z |
| Modified | 2025-07-08T12:32:05.719Z |
Product Information
| Vendor | code-projects |
|---|---|
| Product | Food Distributor Site |
| Version | 1.0 |
CVSS Information
| Base Score | 6.9 (MEDIUM) |
|---|---|
| Attack Vector | CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P |
AI Analysis
| AI Description | A SQL injection vulnerability was discovered in the login functionality of the Food Distributor Site version 1.0. This critical issue allows remote attackers to inject malicious SQL code, potentially leading to unauthorized access and data manipulation. |
|---|---|
| AI Severity | Medium |
| AI Vendor | code-projects |
| AI Product | Food Distributor Site |
| AI Version | 1.0 |
Affected Products
- code-projects Food Distributor Site 1.0
Additional Information
| CWE List | CWE-89, CWE-74 |
|---|---|
| Source | VulDB |
Description
A vulnerability classified as critical has been found in code-projects Food Distributor Site 1.0. This affects an unknown part of the file /admin/login.php. The manipulation of the argument Username leads to sql injection. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used.