CVE-2025-11070 | Projectworlds Online Shopping System 1.0 /store/cart_add.php ID sql injection

A vulnerability was found in Projectworlds Online Shopping System 1.0. It has been declared as critical. This affects an unknown part of the file /store/cart_add.php. Such manipulation of the argument ID leads to sql injection.

This vulnerability is listed as CVE-2025-11070. The attack may be performed from remote. In addition, an exploit is available.VulDB Recent EntriesRead More