Lucene search
K

1331 matches found

Cvelist
Cvelist
added 2025/11/17 12:0 a.m.9 views

CVE-2024-46334

kashipara School Management System 1.0 is vulnerable to Cross Site Scripting XSS via the formuser and formpassword parameters in /adminLogin.php...

0.00196EPSS
Exploits1References2
Positive Technologies
Positive Technologies
added 2025/11/17 12:0 a.m.8 views

PT-2025-47171

Name of the Vulnerable Software and Affected Versions kashipara School Management System version 1.0 Description The software is susceptible to Cross Site Scripting XSS attacks. The issue is located in the /client user/feedback.php endpoint. An attacker could potentially inject malicious scripts...

6.1CVSS5.9AI score0.00196EPSS
Exploits1References4
CNNVD
CNNVD
added 2025/11/17 12:0 a.m.4 views

Kashipara Online Furniture Shopping Ecommerce Website 安全漏洞

Kashipara Online Furniture Shopping Ecommerce Website is a fast online shopping ecommerce website from Kashipara. A security vulnerability exists in Kashipara Online Furniture Shopping Ecommerce Website version 1.0, which stems from an unvalidated recoveremail parameter in userpasswordrecover.php...

6.5CVSS7.7AI score0.00215EPSS
Exploits1References3
Vulnrichment
Vulnrichment
added 2025/11/17 12:0 a.m.3 views

CVE-2024-44651

Kashipara Ecommerce Website 1.0 is vulnerable to SQL Injection via the recoveremail parameter in userpasswordrecover.php...

7.6AI score0.00215EPSS
Exploits1References2
CVE
CVE
added 2025/11/17 12:0 a.m.12 views

CVE-2024-44653

Kashipara Ecommerce Website 1.0 is vulnerable to SQL Injection via the user_email parameter in user_login.php. Multiple Connected sources corroborate a SQLi flaw stemming from unvalidated input in user_login.php, enabling potential unauthorized data access or manipulation. The attack surface is t...

6.5CVSS7.6AI score0.00215EPSS
Exploits1References2Affected Software1
EUVD
EUVD
added 2025/11/17 12:0 a.m.5 views

EUVD-2024-55094

kashipara School Management System 1.0 is vulnerable to Cross Site Scripting XSS via /clientuser/feedback.php...

6.1CVSS5.7AI score0.00196EPSS
Exploits1References3
CVE
CVE
added 2025/11/17 12:0 a.m.11 views

CVE-2024-44652

Kashipara Ecommerce Website 1.0 is reported to be vulnerable to SQL Injection via the user_register.php parameters: user_email, username, user_firstname, user_lastname, and user_address. The Red Hat, ENISA EUVD, NVD, CVE records consistently describe an SQL injection issue in the same input field...

6.5CVSS7.6AI score0.00215EPSS
Exploits1References2Affected Software1
Positive Technologies
Positive Technologies
added 2025/11/17 12:0 a.m.7 views

PT-2025-47177

Name of the Vulnerable Software and Affected Versions Kashipara Ecommerce Website version 1.0 Description The Kashipara Ecommerce Website is susceptible to a SQL Injection issue through the recover email parameter in the user password recover.php file. This allows for potential unauthorized acces...

6.5CVSS7.7AI score0.00215EPSS
Exploits1References5
Positive Technologies
Positive Technologies
added 2025/11/17 12:0 a.m.4 views

PT-2025-47187

Name of the Vulnerable Software and Affected Versions Kashipara Ecommerce Website version 1.0 Description The software is susceptible to a SQL Injection issue through the user email parameter in the user login.php file. This allows for potential unauthorized access or manipulation of data. The...

6.5CVSS7.5AI score0.00215EPSS
Exploits1References5
Vulnrichment
Vulnrichment
added 2025/11/17 12:0 a.m.4 views

CVE-2024-44652

Kashipara Ecommerce Website 1.0 is vulnerable to SQL Injection via the useremail, username, userfirstname, userlastname, and useraddress parameters in userregister.php...

7.6AI score0.00215EPSS
Exploits1References2
Cvelist
Cvelist
added 2025/11/17 12:0 a.m.9 views

CVE-2024-44651

Kashipara Ecommerce Website 1.0 is vulnerable to SQL Injection via the recoveremail parameter in userpasswordrecover.php...

0.00215EPSS
Exploits1References2
EUVD
EUVD
added 2025/11/17 12:0 a.m.4 views

EUVD-2024-55092

Kashipara Ecommerce Website 1.0 is vulnerable to SQL Injection via the recoveremail parameter in userpasswordrecover.php...

6.5CVSS7.5AI score0.00215EPSS
Exploits1References3
CVE
CVE
added 2025/11/17 12:0 a.m.9 views

CVE-2024-44651

CVE-2024-44651 affects Kashipara Ecommerce Website 1.0. The vulnerability is a SQL Injection via the recover_email parameter in user_password_recover.php, caused by unvalidated input. Impact per the reports is potential unauthorized DB access; CVSS v3.1 base score 6.5 (Medium) with network access...

6.5CVSS7.6AI score0.00215EPSS
Exploits1References2Affected Software1
Vulnrichment
Vulnrichment
added 2025/11/17 12:0 a.m.3 views

CVE-2024-44653

Kashipara Ecommerce Website 1.0 is vulnerable to SQL Injection via the useremail parameter in userlogin.php...

7.6AI score0.00215EPSS
Exploits1References2
Cvelist
Cvelist
added 2025/11/17 12:0 a.m.8 views

CVE-2024-44652

Kashipara Ecommerce Website 1.0 is vulnerable to SQL Injection via the useremail, username, userfirstname, userlastname, and useraddress parameters in userregister.php...

0.00215EPSS
Exploits1References2
Cvelist
Cvelist
added 2025/11/17 12:0 a.m.7 views

CVE-2024-44653

Kashipara Ecommerce Website 1.0 is vulnerable to SQL Injection via the useremail parameter in userlogin.php...

0.00215EPSS
Exploits1References2
CNNVD
CNNVD
added 2025/11/17 12:0 a.m.3 views

Kashipara Online Furniture Shopping Ecommerce Website 安全漏洞

Kashipara Online Furniture Shopping Ecommerce Website is a fast online shopping ecommerce website from Kashipara. A security vulnerability exists in Kashipara Online Furniture Shopping Ecommerce Website version 1.0, which is caused by a vulnerability in userregister.php in the useremail, username...

6.5CVSS7.7AI score0.00215EPSS
Exploits1References3
Positive Technologies
Positive Technologies
added 2025/11/17 12:0 a.m.6 views

PT-2025-47169

Name of the Vulnerable Software and Affected Versions Kashipara Ecommerce Website version 1.0 Description The Kashipara Ecommerce Website is susceptible to SQL Injection. The issue affects the user register.php file and involves the user email, username, user firstname, user lastname, and user...

6.5CVSS7.1AI score0.00215EPSS
Exploits1References5
Vulnrichment
Vulnrichment
added 2025/11/17 12:0 a.m.3 views

CVE-2024-46336

kashipara School Management System 1.0 is vulnerable to Cross Site Scripting XSS via /clientuser/feedback.php...

5.8AI score0.00196EPSS
Exploits1References2
Vulnrichment
Vulnrichment
added 2025/11/17 12:0 a.m.2 views

CVE-2024-46334

kashipara School Management System 1.0 is vulnerable to Cross Site Scripting XSS via the formuser and formpassword parameters in /adminLogin.php...

5.8AI score0.00196EPSS
Exploits1References2
Rows per page
Query Builder