CVE-2025-15409

A vulnerability was determined in code-projects Online Guitar Store 1.0. Affected by this vulnerability is an unknown functionality of the file /admin/Deleteproduct.php. Executing a manipulation of the argument delpro can lead to sql injection. The attack may be performed from remote. The exploit...

CVE-2024-42584

CVE-2024-42584 affects Warehouse Inventory System v2.0, specifically the delete_product.php component. The CSRF vulnerability allows an unauthenticated attacker to induce a victim to perform privileged actions, enabling privilege escalation. Root cause is insufficient verification of request orig...

CVE-2024-42584

A Cross-Site Request Forgery CSRF in the component deleteproduct.php of Warehouse Inventory System v2.0 allows attackers to escalate privileges...

CVE-2024-42584

A Cross-Site Request Forgery CSRF in the component deleteproduct.php of Warehouse Inventory System v2.0 allows attackers to escalate privileges...

CVE-2019-8292

Online Store System v1.0 deleteproduct.php doesn't check to see if a user authtenticated or has administrative rights allowing arbitrary product deletion...

CVE-2019-8292

Online Store System v1.0 deleteproduct.php doesn't check to see if a user authtenticated or has administrative rights allowing arbitrary product deletion...

CVE-2019-8292

The CVE-2019-8292 entry concerns Online Store System v1.0 where delete_product.php fails to verify authentication or administrative privileges, enabling arbitrary product deletion. This is an access control flaw (no authentication checks or admin rights verification) that directly affects the del...