SQL Injection Vulnerability in Code-Projects Modern Bag 1.0
CVE-2025-7510

7.3HIGH

Key Information:

Vendor: Code-Projects
Status: Modern Bag
Vendor: CVE Published:; 13 July 2025

🔔 Create Code-Projects Vulnerability Alert

What is CVE-2025-7510?

A security vulnerability has been identified in Code-Projects' Modern Bag version 1.0, particularly affecting the /admin/productadd_back.php file. This flaw allows attackers to manipulate the 'namepro' argument, which can lead to SQL injection attacks. The vulnerability can be exploited remotely, potentially compromising sensitive data and system integrity. With public disclosure of the exploit, it is crucial for users to take immediate action to protect their systems from potential attacks.

References

https://code-projects.org/

https://github.com/chipower777/cve/issues/3

https://vuldb.com/?ctiid.316192

CVSS V3.1

Score:

7.3

Severity:

HIGH

Confidentiality:

Low

Integrity:

Low

Availability:

Low

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jul 13, 2025