CVE-2025-14249 | code-projects Online Ordering System 1.0 /user_school.php product_id sql injection

A vulnerability was found in code-projects Online Ordering System 1.0 and classified as critical. The affected element is an unknown function of the file /user_school.php. The manipulation of the argument product_id results in sql injection.

This vulnerability was named CVE-2025-14249. The attack may be performed from remote. In addition, an exploit is available.VulDB Recent EntriesRead More