Unknown · Codezips Online Shopping Website · CVE-2025-1858
**Name of the Vulnerable Software and Affected Versions**
Codezips Online Shopping Website version 1.0
**Description**
A critical issue was discovered, affecting the /success.php file, where manipulation of the `id` argument leads to SQL injection. This issue can be exploited remotely.
**Recommendations**
For Codezips Online Shopping Website version 1.0, consider restricting access to the /success.php file until a fix is available, and avoid using the `id` argument in this context to minimize the risk of exploitation.