CVE-2025-15074

EUVD-2025-205361
A vulnerability was identified in itsourcecode Online Frozen Foods Ordering System 1.0. This vulnerability affects unknown code of the file /customer_details.php. Such manipulation leads to sql injection. It is possible to launch the attack remotely. The exploit is publicly available and might be used.
Injection
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
7.3 HIGH
NETWORK
LOW
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L
VulDBCNA
7.3 HIGH
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L/E:P/RL:X/RC:R
Base Score
CVSS 3.x
EPSS Score
Percentile: 1%
Affected Products (NVD)
VendorProductVersion
itsourcecodeonline_frozen_foods_ordering_system
1.0
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
https://github.com/ttting888/CVE/issues/1
https://itsourcecode.com/
https://vuldb.com/?ctiid.338331
https://vuldb.com/?id.338331
https://vuldb.com/?submit.721389