15 matches found
CVE-2025-15583
A weakness has been identified in detronetdip E-commerce 1.0.0. This affects the function getsafevalue of the file utility/function.php. Executing a manipulation can lead to cross site scripting. The attack can be executed remotely. The exploit has been made available to the public and could be...
CVE-2025-15583
CVE-2025-15583 affects detronetdip E-commerce 1.0.0, specifically the get_safe_value function in util/function.php. The vulnerability induces cross-site scripting and can be triggered remotely; public exploit appears to be available. The description provides no details on a fix or mitigations, an...
CVE-2025-15582 detronetdip E-commerce Product Management Update authorization
A security flaw has been discovered in detronetdip E-commerce 1.0.0. The impacted element is the function Delete/Update of the component Product Management Module. Performing a manipulation of the argument ID results in authorization bypass. Remote exploitation of the attack is possible. The...
CVE-2025-15582
The CVE-2025-15582 issue affects detronetdip E-commerce 1.0.0, specifically the Delete/Update function in the Product Management Module. A manipulation of the ID argument yields an authorization bypass, enabling remote exploitation. Public exploit code is referenced, and vendors have not provided...
PT-2026-21249
A weakness has been identified in detronetdip E-commerce 1.0.0. This affects the function get safe value of the file utility/function.php. Executing a manipulation can lead to cross site scripting. The attack can be executed remotely. The exploit has been made available to the public and could be...
CVE-2026-2165
A weakness has been identified in detronetdip E-commerce 1.0.0. Impacted is an unknown function of the file /Admin/assets/backend/seller/addseller.php of the component Account Creation Endpoint. Executing a manipulation of the argument email can lead to missing authentication. The attack can be...
CVE-2026-2165
A weakness has been identified in detronetdip E-commerce 1.0.0. Impacted is an unknown function of the file /Admin/assets/backend/seller/addseller.php of the component Account Creation Endpoint. Executing a manipulation of the argument email can lead to missing authentication. The attack can be...
CVE-2026-2165
A weakness has been identified in detronetdip E-commerce 1.0.0. Impacted is an unknown function of the file /Admin/assets/backend/seller/addseller.php of the component Account Creation Endpoint. Executing a manipulation of the argument email can lead to missing authentication. The attack can be...
CVE-2026-2164
A security flaw has been discovered in detronetdip E-commerce 1.0.0. This issue affects some unknown processing of the file /seller/assets/backend/profile/addadhar.php. Performing a manipulation of the argument File results in unrestricted upload. Remote exploitation of the attack is possible. Th...
CVE-2026-2165
CVE-2026-2165 affects detronetdip E-commerce 1.0.0. The vulnerability lies in an unknown function of /Admin/assets/backend/seller/add_seller.php where manipulating the email argument can cause missing authentication, enabling a remote exploit. Public exploit exists; the issue was reported early v...
EUVD-2026-5784
A weakness has been identified in detronetdip E-commerce 1.0.0. Impacted is an unknown function of the file /Admin/assets/backend/seller/addseller.php of the component Account Creation Endpoint. Executing a manipulation of the argument email can lead to missing authentication. The attack can be...
CVE-2026-2164 detronetdip E-commerce addadhar.php unrestricted upload
A security flaw has been discovered in detronetdip E-commerce 1.0.0. This issue affects some unknown processing of the file /seller/assets/backend/profile/addadhar.php. Performing a manipulation of the argument File results in unrestricted upload. Remote exploitation of the attack is possible. Th...
CVE-2026-2164
Detronetdip E-commerce 1.0.0 is affected by an unrestricted upload vulnerability in the file path /seller/assets/backend/profile/addadhar.php. The issue arises from manipulating the File argument, enabling remote code upload and exploitation. Public exploitation has been released, and maintainers...
CVE-2026-2164 detronetdip E-commerce addadhar.php unrestricted upload
A security flaw has been discovered in detronetdip E-commerce 1.0.0. This issue affects some unknown processing of the file /seller/assets/backend/profile/addadhar.php. Performing a manipulation of the argument File results in unrestricted upload. Remote exploitation of the attack is possible. Th...
PT-2026-6996
Name of the Vulnerable Software and Affected Versions detronetdip E-commerce version 1.0.0 Description A weakness exists in detronetdip E-commerce 1.0.0 related to account creation. A manipulation of the email argument within an unknown function of the file /Admin/assets/backend/seller/add...