Critical severity9.8NVD Advisory· Published Oct 7, 2025· Updated Apr 15, 2026
CVE-2025-52021
CVE-2025-52021
Description
A SQL Injection vulnerability exists in the edit_product.php file of PuneethReddyHC Online Shopping System Advanced 1.0. The product_id GET parameter is unsafely passed to a SQL query without proper validation or parameterization.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
1- Range: =1.0
Patches
Vulnerability mechanics
References
1News mentions
0No linked articles in our index yet.