CVE-2025-0195 – This critical SQL injection vulnerability in Po... (How to Fix)

Q: What is the severity of CVE-2025-0195?

CVE-2025-0195 has a CVSS score of 6.3 (MEDIUM). This critical SQL injection vulnerability in Point of Sales and Inventory Management System 1.0 allows remote attackers to execute arbitrary SQL commands via the 'id' parameter in /user/del_product.php. Attackers can potentially access, modify, or delete database content. All users running the affected software are at risk.

📋 TL;DR

This critical SQL injection vulnerability in Point of Sales and Inventory Management System 1.0 allows remote attackers to execute arbitrary SQL commands via the 'id' parameter in /user/del_product.php. Attackers can potentially access, modify, or delete database content. All users running the affected software are at risk.

💻 Affected Systems

Products:

Point of Sales and Inventory Management System

Versions: 1.0

Operating Systems: Any OS running PHP/MySQL

Default Config Vulnerable: ⚠️ Yes

Notes: Affects installations with the vulnerable /user/del_product.php file present

📦 What is this software?

Point Of Sales And Inventory Management System by Code Projects

View all CVEs affecting Point Of Sales And Inventory Management System →

⚠️ Risk & Real-World Impact

🔴

Worst Case

Complete database compromise leading to data theft, data destruction, or full system takeover via SQL injection to RCE chaining

🟠

Likely Case

Unauthorized data access, privilege escalation, or data manipulation in the POS/inventory database

🟢

If Mitigated

Limited impact with proper input validation and database permissions restricting damage to specific tables

🌐 Internet-Facing: HIGH - Attack can be launched remotely without authentication

🏢 Internal Only: HIGH - Internal attackers can exploit this with network access

🎯 Exploit Status

Public PoC: ⚠️ Yes

Weaponized: LIKELY

Unauthenticated Exploit: ⚠️ Yes

Complexity: LOW

Public exploit code available on GitHub gist, simple SQL injection requiring minimal technical skill

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: Unknown

Vendor Advisory: https://code-projects.org/

Restart Required: No

Instructions:

No official patch available. Consider migrating to supported software or implementing workarounds.

🔧 Temporary Workarounds

Input Validation and Sanitization

all

Add parameter validation and sanitization to the id parameter in del_product.php

Modify /user/del_product.php to validate id parameter as integer: if(!is_numeric($_GET['id'])) { die('Invalid input'); }

Web Application Firewall Rules

all

Block SQL injection patterns targeting /user/del_product.php

WAF rule: deny requests to /user/del_product.php containing SQL keywords in parameters

🧯 If You Can't Patch

Isolate the system on a separate network segment with strict access controls
Implement database-level protections: use least privilege accounts, enable audit logging

🔍 How to Verify

Check if Vulnerable:

Test /user/del_product.php?id=1' OR '1'='1 and observe SQL error or unexpected behavior

Check Version:

Check software version in admin panel or readme files

Verify Fix Applied:

Test with SQL injection payloads and verify proper error handling or rejection

📡 Detection & Monitoring

Log Indicators:

SQL syntax errors in web server logs
Unusual database queries from web application user
Multiple failed delete operations

Network Indicators:

HTTP requests to /user/del_product.php with SQL keywords in parameters
Unusual database traffic patterns

SIEM Query:

source="web_logs" AND uri="/user/del_product.php" AND (param="id" AND value MATCHES "[';]|UNION|SELECT|OR")

📊 Metadata

CVE ID: CVE-2025-0195

CVSS v3 Score: 6.3 (MEDIUM)

CVSS Vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L

CWE: CWE-74

EPSS Score: 0.06% exploit probability (17.5th percentile)

Published: January 3, 2025

Last Updated: February 25, 2025

🔗 References

https://code-projects.org/ Product
https://gist.github.com/Masamuneee/1ac717728823d58ef365a418c8f39810 Exploit,Third Party Advisory
https://vuldb.com/?ctiid.290132 Permissions Required,VDB Entry
https://vuldb.com/?id.290132 Third Party Advisory,VDB Entry
https://vuldb.com/?submit.473349 Third Party Advisory,VDB Entry

📤 Share & Export

📄 Export Markdown 📋 Export JSON

🔗 Related Vulnerabilities

If you're affected by CVE-2025-0195, you might also want to check these: