Security Advisory

CVE-2025-12292

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2025-10-27 15:32:09
Last updated 2025-10-30 14:16:59
Assigner VulDB
State PUBLISHED

Description

A vulnerability was determined in SourceCodester Point of Sales 1.0. This vulnerability affects unknown code of the file /index.php. This manipulation of the argument Username causes sql injection. It is possible to initiate the attack remotely. The exploit has been publicly disclosed and may be utilized.