1331 matches found
CVE-2024-46334
kashipara School Management System 1.0 is vulnerable to Cross Site Scripting XSS via the formuser and formpassword parameters in /adminLogin.php...
PT-2025-47171
Name of the Vulnerable Software and Affected Versions kashipara School Management System version 1.0 Description The software is susceptible to Cross Site Scripting XSS attacks. The issue is located in the /client user/feedback.php endpoint. An attacker could potentially inject malicious scripts...
Kashipara Online Furniture Shopping Ecommerce Website 安全漏洞
Kashipara Online Furniture Shopping Ecommerce Website is a fast online shopping ecommerce website from Kashipara. A security vulnerability exists in Kashipara Online Furniture Shopping Ecommerce Website version 1.0, which stems from an unvalidated recoveremail parameter in userpasswordrecover.php...
CVE-2024-44651
Kashipara Ecommerce Website 1.0 is vulnerable to SQL Injection via the recoveremail parameter in userpasswordrecover.php...
CVE-2024-44653
Kashipara Ecommerce Website 1.0 is vulnerable to SQL Injection via the user_email parameter in user_login.php. Multiple Connected sources corroborate a SQLi flaw stemming from unvalidated input in user_login.php, enabling potential unauthorized data access or manipulation. The attack surface is t...
EUVD-2024-55094
kashipara School Management System 1.0 is vulnerable to Cross Site Scripting XSS via /clientuser/feedback.php...
CVE-2024-44652
Kashipara Ecommerce Website 1.0 is reported to be vulnerable to SQL Injection via the user_register.php parameters: user_email, username, user_firstname, user_lastname, and user_address. The Red Hat, ENISA EUVD, NVD, CVE records consistently describe an SQL injection issue in the same input field...
PT-2025-47177
Name of the Vulnerable Software and Affected Versions Kashipara Ecommerce Website version 1.0 Description The Kashipara Ecommerce Website is susceptible to a SQL Injection issue through the recover email parameter in the user password recover.php file. This allows for potential unauthorized acces...
PT-2025-47187
Name of the Vulnerable Software and Affected Versions Kashipara Ecommerce Website version 1.0 Description The software is susceptible to a SQL Injection issue through the user email parameter in the user login.php file. This allows for potential unauthorized access or manipulation of data. The...
CVE-2024-44652
Kashipara Ecommerce Website 1.0 is vulnerable to SQL Injection via the useremail, username, userfirstname, userlastname, and useraddress parameters in userregister.php...
CVE-2024-44651
Kashipara Ecommerce Website 1.0 is vulnerable to SQL Injection via the recoveremail parameter in userpasswordrecover.php...
EUVD-2024-55092
Kashipara Ecommerce Website 1.0 is vulnerable to SQL Injection via the recoveremail parameter in userpasswordrecover.php...
CVE-2024-44651
CVE-2024-44651 affects Kashipara Ecommerce Website 1.0. The vulnerability is a SQL Injection via the recover_email parameter in user_password_recover.php, caused by unvalidated input. Impact per the reports is potential unauthorized DB access; CVSS v3.1 base score 6.5 (Medium) with network access...
CVE-2024-44653
Kashipara Ecommerce Website 1.0 is vulnerable to SQL Injection via the useremail parameter in userlogin.php...
CVE-2024-44652
Kashipara Ecommerce Website 1.0 is vulnerable to SQL Injection via the useremail, username, userfirstname, userlastname, and useraddress parameters in userregister.php...
CVE-2024-44653
Kashipara Ecommerce Website 1.0 is vulnerable to SQL Injection via the useremail parameter in userlogin.php...
Kashipara Online Furniture Shopping Ecommerce Website 安全漏洞
Kashipara Online Furniture Shopping Ecommerce Website is a fast online shopping ecommerce website from Kashipara. A security vulnerability exists in Kashipara Online Furniture Shopping Ecommerce Website version 1.0, which is caused by a vulnerability in userregister.php in the useremail, username...
PT-2025-47169
Name of the Vulnerable Software and Affected Versions Kashipara Ecommerce Website version 1.0 Description The Kashipara Ecommerce Website is susceptible to SQL Injection. The issue affects the user register.php file and involves the user email, username, user firstname, user lastname, and user...
CVE-2024-46336
kashipara School Management System 1.0 is vulnerable to Cross Site Scripting XSS via /clientuser/feedback.php...
CVE-2024-46334
kashipara School Management System 1.0 is vulnerable to Cross Site Scripting XSS via the formuser and formpassword parameters in /adminLogin.php...