Security Advisory

CVE-2025-9660

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2025-08-29 16:32:06

Last updated 2025-08-29 16:59:21

Assigner VulDB

State PUBLISHED

Description

A vulnerability was found in SourceCodester Bakeshop Online Ordering System 1.0. The impacted element is an unknown function of the file /passwordrecover.php. Performing manipulation of the argument phonenumber results in sql injection. The attack is possible to be carried out remotely. The exploit has been made public and could be used.

← Browse all CVEs View on cve.org ↗