Lucene search
K

44 matches found

EUVD
EUVD
added 5 days ago9 views

EUVD-2026-42561

The CorvusPay WooCommerce Payment Gateway plugin for WordPress is vulnerable to authorization bypass in all versions up to, and including, 2.7.4. This is due to the plugin not properly verifying that a user is authorized to perform an action. This makes it possible for unauthenticated attackers t...

5.3CVSS6AI score0.00288EPSS
Exploits0References8
ATTACKERKB
ATTACKERKB
added 2026/07/05 2:30 a.m.7 views

CVE-2026-14694

A vulnerability has been found in SourceCodester Multi-Vendor Online Grocery Management System 1.0. Affected by this issue is the function cancelorder of the file classes/Master.php of the component POST Parameter Handler. The manipulation of the argument ID leads to sql injection. It is possible...

6.5CVSS6.5AI score0.002EPSS
Exploits0References6Affected Software1
EUVD
EUVD
added 2026/07/05 2:15 a.m.8 views

EUVD-2026-41716

A flaw has been found in SourceCodester Multi-Vendor Online Grocery Management System 1.0. Affected by this vulnerability is the function cancelorder of the file classes/Master.php. Executing a manipulation can lead to improper authorization. The attack may be performed from remote. The exploit h...

5.5CVSS5.6AI score0.0023EPSS
Exploits0References6
ATTACKERKB
ATTACKERKB
added 2026/07/05 2:15 a.m.7 views

CVE-2026-14693

A flaw has been found in SourceCodester Multi-Vendor Online Grocery Management System 1.0. Affected by this vulnerability is the function cancelorder of the file classes/Master.php. Executing a manipulation can lead to improper authorization. The attack may be performed from remote. The exploit h...

5.5CVSS5.8AI score0.0023EPSS
Exploits0References6Affected Software1
RedhatCVE
RedhatCVE
added 2026/03/03 1:48 a.m.5 views

CVE-2026-26713

code-projects Simple Food Order System v1.0 is vulnerable to SQL Injection in /food/routers/cancel-order.php...

9.8CVSS6AI score0.0033EPSS
Exploits1References1
OSV
OSV
added 2026/03/02 8:16 p.m.3 views

CVE-2026-26713

code-projects Simple Food Order System v1.0 is vulnerable to SQL Injection in /food/routers/cancel-order.php...

9.8CVSS5.9AI score0.0033EPSS
Exploits1References1
NVD
NVD
added 2026/03/02 8:16 p.m.5 views

CVE-2026-26713

code-projects Simple Food Order System v1.0 is vulnerable to SQL Injection in /food/routers/cancel-order.php...

9.8CVSS0.0033EPSS
Exploits1References1
ATTACKERKB
ATTACKERKB
added 2026/03/02 12:0 a.m.3 views

CVE-2026-26713

code-projects Simple Food Order System v1.0 is vulnerable to SQL Injection in /food/routers/cancel-order.php...

9.8CVSS6AI score0.0033EPSS
Exploits1References2
Vulnrichment
Vulnrichment
added 2026/03/02 12:0 a.m.2 views

CVE-2026-26713

code-projects Simple Food Order System v1.0 is vulnerable to SQL Injection in /food/routers/cancel-order.php...

6AI score0.0033EPSS
Exploits1References1
Cvelist
Cvelist
added 2026/03/02 12:0 a.m.29 views

CVE-2026-26713

code-projects Simple Food Order System v1.0 is vulnerable to SQL Injection in /food/routers/cancel-order.php...

0.0033EPSS
Exploits1References1
EUVD
EUVD
added 2026/03/02 12:0 a.m.4 views

EUVD-2026-9261

code-projects Simple Food Order System v1.0 is vulnerable to SQL Injection in /food/routers/cancel-order.php...

9.8CVSS6AI score0.0033EPSS
Exploits1References1
Positive Technologies
Positive Technologies
added 2026/03/02 12:0 a.m.5 views

PT-2026-22694

Name of the Vulnerable Software and Affected Versions Simple Food Order System version 1.0 Description The Simple Food Order System version 1.0 is susceptible to SQL Injection. The issue is located in the '/food/routers/cancel-order.php' component. The vulnerability allows for potential...

9.8CVSS6AI score0.0033EPSS
Exploits1References3
CNNVD
CNNVD
added 2026/03/02 12:0 a.m.6 views

Code-Projects Simple Food Order System SQL注入漏洞

Code-Projects Simple Food Order System is a simple food ordering system developed by Code-Projects as open source. Version 1.0 of the Code-Projects Simple Food Order System has a SQL injection vulnerability; this vulnerability stems from the file/food/routers/cancel-order.php being vulnerable to...

9.8CVSS5.8AI score0.0033EPSS
Exploits1References2
CVE
CVE
added 2026/03/02 12:0 a.m.15 views

CVE-2026-26713

The CVE-2026-26713 entry affects Simple Food Order System v1.0. It is vulnerable to SQL Injection in /food/routers/cancel-order.php due to improper input handling in a database query. Impact is rated High for confidentiality, integrity, and availability (CVSS v3.1: 9.8; AV:N/AC:L/PR:N/UI:N/S:U/C:...

9.8CVSS6AI score0.0033EPSS
Exploits1References1Affected Software1
RedhatCVE
RedhatCVE
added 2026/01/10 5:41 a.m.9 views

CVE-2025-51626

SQL injection vulnerability in pss.sale.com 1.0 via the id parameter to the userfiles/php/cancelorder.php endpoint...

6.5CVSS8.1AI score0.00215EPSS
Exploits0References1
OSV
OSV
added 2026/01/09 9:16 p.m.3 views

CVE-2025-51626

SQL injection vulnerability in pss.sale.com 1.0 via the id parameter to the userfiles/php/cancelorder.php endpoint...

6.5CVSS5.8AI score0.00215EPSS
Exploits0References2
NVD
NVD
added 2026/01/09 9:16 p.m.5 views

CVE-2025-51626

SQL injection vulnerability in pss.sale.com 1.0 via the id parameter to the userfiles/php/cancelorder.php endpoint...

6.5CVSS0.00215EPSS
Exploits0References2
EUVD
EUVD
added 2026/01/09 12:0 a.m.7 views

EUVD-2026-1681

SQL injection vulnerability in pss.sale.com 1.0 via the id parameter to the userfiles/php/cancelorder.php endpoint...

6.5CVSS7.5AI score0.00215EPSS
Exploits0References3
CNNVD
CNNVD
added 2026/01/09 12:0 a.m.5 views

pss.sale.com 安全漏洞

pss.sale.com is a merchandising system by the individual developer XiaoLiuChu in China. A security vulnerability exists in version 1.0 of pss.sale.com, which stems from an incorrect manipulation of the parameter id in the endpoint userfiles/php/cancelorder.php, which could lead to a SQL injection...

6.5CVSS7.6AI score0.00215EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2026/01/09 12:0 a.m.8 views

PT-2026-1812

Name of the Vulnerable Software and Affected Versions pss.sale.com version 1.0 Description A SQL injection issue exists in pss.sale.com version 1.0. The issue is located in the userfiles/php/cancel order.php endpoint, specifically through the id parameter. Exploitation of this issue could allow a...

6.5CVSS7.5AI score0.00215EPSS
Exploits0References6
Rows per page
Query Builder