CVE-2025-7478

Name of the Vulnerable Software and Affected Versions: Modern Bag version 1.0

Description: A critical issue exists in Modern Bag 1.0, specifically within the /admin/category-list.php file. Manipulation of the idCate argument can lead to a SQL injection. This allows for remote attacks. The exploit details have been publicly disclosed.

Recommendations: Modern Bag version 1.0: Address the SQL injection issue by sanitizing or validating the idCate parameter before using it in database queries. Modern Bag version 1.0: Review and secure the code within the /admin/category-list.php file to prevent further injection attempts.