CVE-2025-0198 Information

Description

A vulnerability which was classified as critical has been found in code-projects Point of Sales and Inventory Management System 1.0. This issue affects some unknown processing of the file /user/search_result.php. The manipulation of the argument id leads to sql injection. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used.

Reference

https://code-projects.org/ https://gist.github.com/Masamuneee/86580188bf42580c0ae70ae4d247e6df https://vuldb.com/?ctiid.290135 https://vuldb.com/?id.290135 https://vuldb.com/?submit.473383