Open-source project Online Shopping System Advanced is vulnerable to Reflected Cross-Site Scripting (XSS). An attacker might trick somebody into using a crafted URL, which will cause a script to be run in user's...
6.2AI Score
0.0004EPSS
A vulnerability was found in PuneethReddyHC Online Shopping System Advanced 1.0. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /admin/reg.php of the component Admin Registration. The manipulation leads to improper authentication. The...
9.8CVSS
9.4AI Score
0.002EPSS
A vulnerability, which was classified as problematic, was found in PuneethReddyHC online-shopping-system-advanced 1.0. This affects an unknown part of the file addsuppliers.php. The manipulation of the argument First name leads to cross site scripting. It is possible to initiate the attack...
5.4CVSS
5.2AI Score
0.001EPSS
Online-shopping-system-advanced 1.0 was discovered to contain a SQL injection vulnerability via the p parameter at...
9.8CVSS
9.7AI Score
0.002EPSS
An un-authenticated SQL Injection exists in PuneethReddyHC online-shopping-system-advanced through the /homeaction.php cat_id parameter. Using a post request does not sanitize the user...
9.8CVSS
9.8AI Score
0.058EPSS
An un-authenticated SQL Injection exists in PuneethReddyHC online-shopping-system-advanced through the /action.php prId parameter. Using a post request does not sanitize the user...
7.5CVSS
8.1AI Score
0.052EPSS