Unknown · Simple Stock System · CVE-2025-15243
**Name of the Vulnerable Software and Affected Versions**
Simple Stock System version 1.0
**Description**
A flaw exists in Simple Stock System that allows for SQL injection. This occurs through manipulation of the `Username` argument in the file `/market/login.php`. The attack can be launched remotely. The exploit has been published.
**Recommendations**
Apply input validation and sanitization to the `Username` argument in the `/market/login.php` file.