Login Sign Up

CVE-2025-11478

6.3 MEDIUM
SQL Injection

📋 TL;DR

This SQL injection vulnerability in SourceCodester Farm Management System 1.0 allows attackers to manipulate database queries through the /myCart.php endpoint. Remote attackers can potentially access, modify, or delete sensitive data in the database. All deployments of this specific software version are affected.

💻 Affected Systems

Products:
  • SourceCodester Farm Management System
Versions: 1.0
Operating Systems: Any
Default Config Vulnerable: ⚠️ Yes
Notes: All installations of version 1.0 are vulnerable by default.

📦 What is this software?

Farm Management System by Janobe

View all CVEs affecting Farm Management System →

⚠️ Risk & Real-World Impact

🔴

Worst Case

Complete database compromise including data theft, data manipulation, or complete system takeover through privilege escalation.

🟠

Likely Case

Unauthorized access to sensitive farm management data, customer information, or business operations data.

🟢

If Mitigated

Limited data exposure if proper input validation and database permissions are in place.

🌐 Internet-Facing: HIGH
🏢 Internal Only: MEDIUM

🎯 Exploit Status

Public PoC: ⚠️ Yes
Weaponized: UNKNOWN
Unauthenticated Exploit: ✅ No
Complexity: LOW

Exploit details are publicly available on GitHub, making this easily exploitable by attackers with basic SQL injection knowledge.

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: Not available

Vendor Advisory: https://www.sourcecodester.com/

Restart Required: No

Instructions:

No official patch available. Consider upgrading to a newer version if available, or implement workarounds.

🔧 Temporary Workarounds

Input Validation and Sanitization

all

Implement proper input validation and parameterized queries for the pid parameter in myCart.php

Modify myCart.php to use prepared statements with parameterized queries

Web Application Firewall

all

Deploy a WAF with SQL injection protection rules

Configure WAF to block SQL injection patterns targeting /myCart.php

🧯 If You Can't Patch

  • Restrict network access to the application to trusted IP addresses only
  • Implement database user with minimal necessary permissions

🔍 How to Verify

Check if Vulnerable:

Test the /myCart.php endpoint with SQL injection payloads in the pid parameter

Check Version:

Check application version in admin panel or configuration files

Verify Fix Applied:

Verify that SQL injection attempts no longer succeed and return appropriate error handling

📡 Detection & Monitoring

Log Indicators:

  • Unusual SQL queries in database logs
  • Multiple failed login attempts following SQL injection patterns
  • Unexpected database errors in application logs

Network Indicators:

  • HTTP requests to /myCart.php with SQL keywords in parameters
  • Unusual database connection patterns from web server

SIEM Query:

source="web_logs" AND uri="/myCart.php" AND (param="pid" AND value CONTAINS "UNION" OR value CONTAINS "SELECT" OR value CONTAINS "OR 1=1")

📊 Metadata

CVE ID: CVE-2025-11478
CVSS v3 Score: 6.3 (MEDIUM)
CVSS Vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L
CWE: CWE-74
EPSS Score: 0.05% exploit probability (14.9th percentile)
Published: October 8, 2025
Last Updated: October 9, 2025

🔗 References

📤 Share & Export

📄 Export Markdown 📋 Export JSON

🔗 Related Vulnerabilities

If you're affected by CVE-2025-11478, you might also want to check these:

CVE-2026-25520 10.0

SandboxJS versions before 0.8.29 have a critical sandbox escape vulnerability that allows attackers ...

Same vulnerability type (CWE-74)
CVE-2026-25586 10.0

This CVE describes a sandbox escape vulnerability in SandboxJS library versions before 0.8.29. Attac...

Same vulnerability type (CWE-74)
CVE-2025-20281 10.0

An unauthenticated remote code execution vulnerability in Cisco ISE and ISE-PIC API allows attackers...

Same vulnerability type (CWE-74)