CVE-2025-11594

CVSS v3.1

5.3

Medium

Vector

AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N

Name of the Vulnerable Software and Affected Versions ywxbear PHP-Bookstore-Website-Example and PHP Basic BookStore Website versions prior to 0e0b9f542f7a2d90a8d7f8c83caca69294e234e4

Description A flaw exists in the Quantity Handler component of the software, specifically in the processing of the /index.php file. This results in inadequate validation of the quantity input. The attack can be initiated remotely. The exploit for this issue has been publicly disclosed.

Recommendations Update to a version prior to 0e0b9f542f7a2d90a8d7f8c83caca69294e234e4.

Exploit

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-1284CWE-703

Related Identifiers

CVE-2025-11594

Affected Products

Php Basic Bookstore Website

Php-Bookstore-Website-Example

CVE-2025-11594

Weakness Enumeration

Related Identifiers

Affected Products

References · 7