CVE-2025-51626 | THREATINT

Description

SQL injection vulnerability in pss.sale.com 1.0 via the id parameter to the userfiles/php/cancel_order.php endpoint.

PUBLISHED Reserved 2025-06-16 | Published 2026-01-09 | Updated 2026-01-09 | Assigner mitre

References

gitee.com/XiaoLiuChu/pss.sale.com/tree/master

gist.github.com/hnking-star/17d4c9c990c2324ef109fecb4fc4630c

cve.org (CVE-2025-51626)

nvd.nist.gov (CVE-2025-51626)

Download JSON

help @ threatint.eu