PT-2025-35614 · Sourcecodester · Online Farm Management System
Quchunyi1
·
Published
2025-09-02
·
Updated
2025-09-05
·
CVE-2025-9833
CVSS v3.1
9.8
Critical
| Vector | AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H |
Name of the Vulnerable Software and Affected Versions
SourceCodester Online Farm Management System version 1.0
Description
A SQL injection issue exists in the /Login/login.php file due to manipulation of the
uname argument. This allows for remote exploitation. The exploit is publicly available.Recommendations
Sanitize the
uname argument to prevent SQL injection attacks.
Review and secure the code within the /Login/login.php file.Exploit
Fix
Special Elements Injection
SQL injection
Found an issue in the description? Have something to add? Feel free to write us 👾
Related Identifiers
Affected Products
Online Farm Management System