Vulnerability Identified in CodeAstro Software

A SQL injection vulnerability has been discovered in the Simple Inventory System in PHP MySQL with Source Code, a product developed by CodeAstro. The Japan Vulnerability Notes Database (JVNDB) has assigned the identifier JVNDB-2025-017495 to this security issue. The information was officially published by the Japan Computer Emergency Response Team Coordination Center (JPCERT/CC).

Details of the Security Flaw

The nature of the vulnerability is classified as SQL injection. This type of flaw exists within the software’s code, creating a vector for specific database manipulations. The public advisory confirms the existence of this vulnerability within the specified product. The JVN iPedia vulnerability database provides the official record and details concerning this finding.

Source: http://vrda.jpcert.or.jp/feed/ja/JVNiPedia_JVNDB-2025-017495_AD_1.html