CVE-2025-61455
EUVD-2025-3504720.10.2025, 14:15
SQL Injection vulnerability exists in Bhabishya-123 E-commerce 1.0, specifically within the signup.inc.php endpoint. The application directly incorporates unsanitized user inputs into SQL queries, allowing unauthenticated attackers to bypass authentication and gain full access.
Awaiting analysis
This vulnerability is currently awaiting analysis.