CVE Details
Basic Information
| Title | code-projects LifeStyle Store cart_add.php sql injection |
|---|---|
| Type | cve |
| Published | 2025-07-09T02:02:04.981Z |
| Modified | 2025-07-09T02:02:04.981Z |
Product Information
| Vendor | code-projects |
|---|---|
| Product | LifeStyle Store |
| Version | 1.0 |
CVSS Information
| Base Score | 6.9 (MEDIUM) |
|---|---|
| Attack Vector | CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P |
AI Analysis
| AI Description | A SQL injection vulnerability was discovered in the cart_add.php file of LifeStyle Store version 1.0. This vulnerability allows remote attackers to inject malicious SQL code via the ID argument, potentially leading to data manipulation and unauthorized access. The issue has been publicly disclosed and could be exploited by malicious actors. |
|---|---|
| AI Severity | Medium |
| AI Vendor | code-projects |
| AI Product | LifeStyle Store |
| AI Version | 1.0 |
Affected Products
- code-projects LifeStyle Store 1.0
Additional Information
| CWE List | CWE-89, CWE-74 |
|---|---|
| Source | VulDB |
Description
A vulnerability was found in code-projects LifeStyle Store 1.0. It has been declared as critical. This vulnerability affects unknown code of the file /cart_add.php. The manipulation of the argument ID leads to sql injection. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used.