10 matches found
CVE-2025-15084
A vulnerability was identified in youlaitech youlai-mall 1.0.0/2.0.0. The impacted element is the function orderService.payOrder of the file mall-oms/oms-boot/src/main/java/com/youlai/mall/oms/controller/app/OrderController.java of the component Order Payment Handler. The manipulation leads to...
CVE-2025-15084 youlaitech youlai-mall Order Payment OrderController.java orderService.payOrder access control
A vulnerability was identified in youlaitech youlai-mall 1.0.0/2.0.0. The impacted element is the function orderService.payOrder of the file mall-oms/oms-boot/src/main/java/com/youlai/mall/oms/controller/app/OrderController.java of the component Order Payment Handler. The manipulation leads to...
CVE-2025-10835
A security flaw has been discovered in SourceCodester Pet Grooming Management Software 1.0. This impacts an unknown function of the file /admin/viewpayorder.php. Performing manipulation of the argument ID results in sql injection. The attack can be initiated remotely. The exploit has been release...
CVE-2025-10835
A security flaw has been discovered in SourceCodester Pet Grooming Management Software 1.0. This impacts an unknown function of the file /admin/viewpayorder.php. Performing manipulation of the argument ID results in sql injection. The attack can be initiated remotely. The exploit has been release...
CVE-2025-10835
SourceCodester Pet Grooming Management Software 1.0 is affected by a SQL injection in /admin/view_payorder.php caused by manipulating the ID parameter. The issue is reachable remotely and an exploit has been publicly released. The CVE entry and allied reports describe the root cause as improper h...
CVE-2025-10835 SourceCodester Pet Grooming Management Software view_payorder.php sql injection
A security flaw has been discovered in SourceCodester Pet Grooming Management Software 1.0. This impacts an unknown function of the file /admin/viewpayorder.php. Performing manipulation of the argument ID results in sql injection. The attack can be initiated remotely. The exploit has been release...
CVE-2025-10835 SourceCodester Pet Grooming Management Software view_payorder.php sql injection
A security flaw has been discovered in SourceCodester Pet Grooming Management Software 1.0. This impacts an unknown function of the file /admin/viewpayorder.php. Performing manipulation of the argument ID results in sql injection. The attack can be initiated remotely. The exploit has been release...
PT-2025-39111
Name of the Vulnerable Software and Affected Versions SourceCodester Pet Grooming Management Software version 1.0 Description A security flaw exists in SourceCodester Pet Grooming Management Software version 1.0. Manipulation of the ID argument in the file /admin/view payorder.php can lead to SQL...
SourceCodester Pet Grooming Management Software SQL注入漏洞
SourceCodester Pet Grooming Management Software is an open source pet grooming management system from SourceCodester. SourceCodester Pet Grooming Management Software version 1.0 suffers from a SQL injection vulnerability that stems from incorrect manipulation of the parameter ID in the file...
Pet-grooming-management-view_payorder.php-v.1.0-sql-injection
Pet-grooming-management...