CVE-2025-15167 – itsourcecode Online Cake Ordering System detailtransac.php sql injection

CVE ID : CVE-2025-15167

Published : Dec. 29, 2025, 3:15 a.m. | 1 hour, 7 minutes ago

Description : A vulnerability was determined in itsourcecode Online Cake Ordering System 1.0. This impacts an unknown function of the file /detailtransac.php. This manipulation of the argument ID causes sql injection. Remote exploitation of the attack is possible. The exploit has been publicly disclosed and may be utilized.

Severity: 7.5 | HIGH

Visit the link for more details, such as CVSS details, affected products, timeline, and more…