CVE-2025-14219

A weakness has been identified in Campcodes Retro Basketball Shoes Online Store 1.0. The impacted element is an unknown function of the file /admin/adminrunning.php. Executing a manipulation of the argument productimage can lead to unrestricted upload. It is possible to launch the attack remotely...

CampCodes Retro Basketball Shoes Online Store 安全漏洞

CampCodes Retro Basketball Shoes Online Store is an online store for retro basketball shoes from CampCodes, Inc. A security vulnerability exists in Campcodes Retro Basketball Shoes Online Store version 1.0, which stems from incorrect manipulation of the parameter productimage in the file...

Mobile Shop Management System AddNewProduct.php file code problem vulnerability

Mobile Shop Management System is a store management system. Mobile Shop Management System has a code issue vulnerability that stems from the lack of valid validation of uploaded files in the parameter ProductImage in the file AddNewProduct.php. An attacker can exploit this vulnerability to upload...

CVE-2024-40110

Sourcecodester Poultry Farm Management System v1.0 contains an Unauthenticated Remote Code Execution RCE vulnerability via the productimage parameter at /farm/product.php...

LeoTheme Ap Page Builder SQL注入漏洞

LeoTheme Ap Page Builder is a powerful module from LeoTheme that follows the Prestashop standard. A security vulnerability exists in LeoTheme Ap Page Builder versions prior to 1.7.8.2. An attacker exploited the vulnerability to send a specially crafted SQL query to the Productoneimg parameter to...

PT-2023-25958 · Unknown · Wp Page Builder

Name of the Vulnerable Software and Affected Versions: Ap Page Builder versions prior to 1.7.8.2 Description: The issue allows a remote attacker to send a specially crafted SQL query to the product one img parameter to retrieve the information stored in the database. Recommendations: For versions...