Unknown · Puneethreddyhc Online-Shopping-System-Advanced · CVE-2025-52021
**Name of the Vulnerable Software and Affected Versions**
PuneethReddyHC Online Shopping System Advanced version 1.0
**Description**
A SQL Injection issue exists in the `edit product.php` file. The `product id` GET parameter is passed to a SQL query without sufficient validation or parameterization. This could allow for unauthorized access to or modification of data.
**Recommendations**
Apply proper input validation and parameterization techniques to the `product id` GET parameter in the `edit product.php` file.