CVE-2025-46192 Information

Description

SourceCodester Client Database Management System 1.0 is vulnerable to SQL Injection in user_payment_update.php via the order_id POST parameter.

Reference

https://github.com/x6vrn/mitre/blob/main/CVE-2025-46192.md https://www.invicti.com/learn/blind-sql-injection/