Lucene search
+L

32 matches found

ATTACKERKB
ATTACKERKB
added 6 days ago3 views

CVE-2026-15502

A vulnerability was detected in AojiaoZero Antaris 1.0. This affects the function rewardPurchase of the file /ipn.php of the component PayPal IPN Payment Handler. The manipulation of the argument itemnumber results in sql injection. The attack may be performed from remote. The vendor was contacte...

6.5CVSS6.5AI score0.00196EPSS
Exploits0References5Affected Software1
RedhatCVE
RedhatCVE
added 2026/04/01 11:1 p.m.5 views

CVE-2026-5206

A security vulnerability has been detected in code-projects Simple Gym Management System 1.0. This vulnerability affects unknown code of the component Payment Handler. The manipulation of the argument Paymentid/Amount/customerid/paymenttype/customername leads to sql injection. Remote exploitation...

6.5CVSS6.5AI score0.00192EPSS
Exploits0References1
EUVD
EUVD
added 2026/03/31 6:31 p.m.5 views

EUVD-2026-17577

A security vulnerability has been detected in code-projects Simple Gym Management System 1.0. This vulnerability affects unknown code of the component Payment Handler. The manipulation of the argument Paymentid/Amount/customerid/paymenttype/customername leads to sql injection. Remote exploitation...

6.5CVSS5.7AI score0.00192EPSS
Exploits0References6
NVD
NVD
added 2026/03/31 6:16 p.m.4 views

CVE-2026-5206

A security vulnerability has been detected in code-projects Simple Gym Management System 1.0. This vulnerability affects unknown code of the component Payment Handler. The manipulation of the argument Paymentid/Amount/customerid/paymenttype/customername leads to sql injection. Remote exploitation...

6.5CVSS0.00192EPSS
Exploits0References5
ATTACKERKB
ATTACKERKB
added 2026/03/31 5:30 p.m.2 views

CVE-2026-5206

A security vulnerability has been detected in code-projects Simple Gym Management System 1.0. This vulnerability affects unknown code of the component Payment Handler. The manipulation of the argument Paymentid/Amount/customerid/paymenttype/customername leads to sql injection. Remote exploitation...

6.5CVSS5.7AI score0.00192EPSS
Exploits0References5Affected Software1
Cvelist
Cvelist
added 2026/03/31 5:30 p.m.37 views

CVE-2026-5206 code-projects Simple Gym Management System Payment sql injection

A security vulnerability has been detected in code-projects Simple Gym Management System 1.0. This vulnerability affects unknown code of the component Payment Handler. The manipulation of the argument Paymentid/Amount/customerid/paymenttype/customername leads to sql injection. Remote exploitation...

6.5CVSS0.00192EPSS
Exploits0References5
CVE
CVE
added 2026/03/31 5:30 p.m.10 views

CVE-2026-5206

CVE-2026-5206 affects: code-projects Simple Gym Management System 1.0, specifically the unknown code in the Payment Handler . The issue is a SQL injection caused by manipulation of the arguments Payment_id, Amount, customer_id, payment_type, and customer_name. The vulnerability allows remote expl...

6.5CVSS6.4AI score0.00192EPSS
Exploits0References5
Vulnrichment
Vulnrichment
added 2026/03/31 5:30 p.m.10 views

CVE-2026-5206 code-projects Simple Gym Management System Payment sql injection

A security vulnerability has been detected in code-projects Simple Gym Management System 1.0. This vulnerability affects unknown code of the component Payment Handler. The manipulation of the argument Paymentid/Amount/customerid/paymenttype/customername leads to sql injection. Remote exploitation...

6.5CVSS6.5AI score0.00192EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2026/03/31 12:0 a.m.6 views

PT-2026-29321

A security vulnerability has been detected in code-projects Simple Gym Management System 1.0. This vulnerability affects unknown code of the component Payment Handler. The manipulation of the argument Payment id/Amount/customer id/payment type/customer name leads to sql injection. Remote...

6.5CVSS5.7AI score0.00192EPSS
Exploits0References6
CNNVD
CNNVD
added 2026/03/31 12:0 a.m.9 views

Code-Projects Simple Gym Management System SQL注入漏洞

Code-Projects Simple Gym Management System is an open-source gym management system developed by Code-Projects. Version 1.0 of the Code-Projects Simple Gym Management System has a SQL injection vulnerability. This vulnerability arises from incorrect operations on parameters such as...

6.5CVSS6.7AI score0.00192EPSS
Exploits0References5
NVD
NVD
added 2026/02/06 8:15 a.m.9 views

CVE-2026-2010

A vulnerability has been found in Sanluan PublicCMS up to 4.0.202506.d/5.202506.d/6.202506.d. Impacted is the function Paid of the file publiccms-parent/publiccms-trade/src/main/java/com/publiccms/logic/service/trade/TradePaymentService.java of the component Trade Payment Handler. The manipulatio...

4.2CVSS0.00325EPSS
Exploits1References7
EUVD
EUVD
added 2026/02/06 8:2 a.m.6 views

EUVD-2026-5690

A vulnerability has been found in Sanluan PublicCMS up to 4.0.202506.d/5.202506.d/6.202506.d. Impacted is the function Paid of the file publiccms-parent/publiccms-trade/src/main/java/com/publiccms/logic/service/trade/TradePaymentService.java of the component Trade Payment Handler. The manipulatio...

4.2CVSS4.2AI score0.00325EPSS
Exploits1References7
CNNVD
CNNVD
added 2026/02/06 12:0 a.m.8 views

PublicCMS 授权问题漏洞

PublicCMS is an open-source content management system CMS developed by PublicCMS Company in China using the Java language. There is an authorization issue in PublicCMS; this issue stems from a mistake in the parameter paymentId of the function Paid within the component Trade Payment Handler,...

4.2CVSS5.7AI score0.00325EPSS
Exploits1References7
Positive Technologies
Positive Technologies
added 2025/12/25 12:0 a.m.8 views

PT-2025-53407

Name of the Vulnerable Software and Affected Versions youlaitech youlai-mall versions 1.0.0 through 2.0.0 Description An issue exists in youlaitech youlai-mall that relates to improper access controls. The affected component is the Order Payment Handler, specifically within the...

3.1CVSS6AI score0.00245EPSS
Exploits1References10
CNNVD
CNNVD
added 2025/12/25 12:0 a.m.6 views

youlai-mall 访问控制错误漏洞

youlai-mall is a full-stack mall system by youlaitech open source. youlai-mall version 1.0.0 and 2.0.0 versions of access control error vulnerability , the vulnerability stems from the Order Payment Handler component file mall-oms/oms-boot/src/main/java/com/youlai/mall/oms/controller/ The functio...

3.1CVSS4.3AI score0.00245EPSS
Exploits1References5
EUVD
EUVD
added 2025/10/03 8:7 p.m.7 views

EUVD-2023-12982

Malicious code in bioql PyPI...

6.5CVSS6.2AI score0.00913EPSS
Exploits1References3
RedhatCVE
RedhatCVE
added 2025/05/23 2:57 a.m.7 views

CVE-2023-0998

A vulnerability classified as critical has been found in SourceCodester Alphaware Simple E-Commerce System 1.0. This affects an unknown part of the file /alphaware/summary.php of the component Payment Handler. The manipulation of the argument amount leads to improper access controls. It is possib...

6.5CVSS7.5AI score0.00913EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/22 1:29 p.m.12 views

CVE-2018-25104

A vulnerability was found in CoinGate Plugin up to 1.2.7 on PrestaShop. It has been rated as problematic. Affected by this issue is the function postProcess of the file modules/coingate/controllers/front/callback.php of the component Payment Handler. The manipulation leads to business logic error...

5.3CVSS6.9AI score0.00349EPSS
Exploits0References1
NVD
NVD
added 2024/10/17 4:15 p.m.23 views

CVE-2018-25104

A vulnerability was found in CoinGate Plugin up to 1.2.7 on PrestaShop. It has been rated as problematic. Affected by this issue is the function postProcess of the file modules/coingate/controllers/front/callback.php of the component Payment Handler. The manipulation leads to business logic error...

5.3CVSS0.00349EPSS
Exploits0References4
Vulnrichment
Vulnrichment
added 2024/10/17 3:31 p.m.13 views

CVE-2018-25104 CoinGate Plugin Payment callback.php postProcess logic error

A vulnerability was found in CoinGate Plugin up to 1.2.7 on PrestaShop. It has been rated as problematic. Affected by this issue is the function postProcess of the file modules/coingate/controllers/front/callback.php of the component Payment Handler. The manipulation leads to business logic error...

5.3CVSS6.8AI score0.00349EPSS
Exploits0References4
Rows per page
Query Builder