VYPR
Critical severity9.8NVD Advisory· Published Oct 20, 2025· Updated Apr 15, 2026

CVE-2025-61455

CVE-2025-61455

Description

SQL Injection vulnerability exists in Bhabishya-123 E-commerce 1.0, specifically within the signup.inc.php endpoint. The application directly incorporates unsanitized user inputs into SQL queries, allowing unauthenticated attackers to bypass authentication and gain full access.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Patches

Vulnerability mechanics

News mentions

0

No linked articles in our index yet.

CVE-2025-61455 · Critical · VYPR