CVE-2025-3296
published 2025-04-05CVE-2025-3296: A vulnerability, which was classified as critical, has been found in SourceCodester Online Eyewear Shop 1.0. This issue affects some unknown processing of the…
medium5.3CVSS 4.0
AVNACLATNPRLUINVCLVILVALSCNSINSANEXCRXIRXARXMAVXMACXMATXMPRXMUIXMVCXMVIXMVAXMSCXMSIXMSAXSXAUXRXVXREXUX
A vulnerability, which was classified as critical, has been found in SourceCodester Online Eyewear Shop 1.0. This issue affects some unknown processing of the file /classes/Users.php?f=delete_customer. The manipulation of the argument ID leads to sql injection. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used.
Affected
5 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| msrc | cbl2_vim_9.0.0614-1_on_cbl_mariner_2.0 | — | — |
| msrc | cm1_vim_9.0.0614-1_on_cbl_mariner_1.0 | — | — |
| msrc | microsoft_edge | — | — |
| oretnom23 | online_eyewear_shop | — | — |
| sourcecodester | online_eyewear_shop | — | — |