Critical severity9.8NVD Advisory· Published Oct 20, 2025· Updated Apr 15, 2026
CVE-2025-61455
CVE-2025-61455
Description
SQL Injection vulnerability exists in Bhabishya-123 E-commerce 1.0, specifically within the signup.inc.php endpoint. The application directly incorporates unsanitized user inputs into SQL queries, allowing unauthenticated attackers to bypass authentication and gain full access.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Patches
Vulnerability mechanics
News mentions
0No linked articles in our index yet.