CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

17 matches found

RedhatCVE•added 2026/01/30 9:23 p.m.•6 views

CVE-2026-1600

A vulnerability was identified in Bdtask Bhojon All-In-One Restaurant Management System up to 20260116. The impacted element is an unknown function of the file /hungry/addtocart of the component Add-to-Cart Submission Endpoint. The manipulation of the argument price/allprice leads to business log...

5.3CVSS5.5AI score0.00068EPSS

Exploits1References1

NVD•added 2026/01/29 6:16 p.m.•4 views

CVE-2026-1600

5.3CVSS0.00068EPSS

Exploits1References5

OSV•added 2026/01/29 6:16 p.m.•2 views

CVE-2026-1600

4.3CVSS5.4AI score0.00068EPSS

Exploits1References5

Vulnrichment•added 2026/01/29 6:2 p.m.•5 views

CVE-2026-1600 Bdtask Bhojon All-In-One Restaurant Management System Add-to-Cart Submission Endpoint addtocart logic error

5.3CVSS5.5AI score0.00068EPSS

Exploits1References5

EUVD•added 2026/01/29 6:2 p.m.•5 views

EUVD-2026-4965

5.3CVSS5.5AI score0.00068EPSS

Exploits1References5

CNNVD•added 2026/01/29 12:0 a.m.•2 views

Bdtask Bhojon All-In-One Restaurant Management System has security vulnerabilities.

Bdtask Bhojon All-In-One Restaurant Management System is a restaurant management system developed by the Bangladeshi company Bdtask. The versions of the Bdtask Bhojon All-In-One Restaurant Management System prior to version 20260116 contained security vulnerabilities. These vulnerabilities were...

5.3CVSS5.8AI score0.00068EPSS

Exploits1References6

Positive Technologies•added 2026/01/29 12:0 a.m.•5 views

PT-2026-5325

5.3CVSS5.5AI score0.00068EPSS

Exploits1References6

EUVD•added 2025/10/07 12:30 a.m.•2 views

EUVD-2008-4075

Malware in sbrugna...

7.5CVSS6.4AI score0.00436EPSS

Exploits1References6

Positive Technologies•added 2025/02/11 12:0 a.m.•2 views

PT-2025-6150 · Unknown · 1000 Projects Bookstore Management System

Name of the Vulnerable Software and Affected Versions: 1000 Projects Bookstore Management System version 1.0 Description: A critical issue has been found in the 1000 Projects Bookstore Management System, affecting some unknown functionality of the file addtocart.php. The manipulation of the...

8.8CVSS8.5AI score0.00142EPSS

Exploits1References11

CVE•added 2024/12/27 12:0 a.m.•70 views

CVE-2024-50944

Consolidated details show a concrete issue in SimplCommerce: an integer overflow in the shopping cart, specifically in the CartController.AddToCart method, triggered by crafted inputs to the quantity parameter. Affected: SimplCommerce with commit 230310c8d7a0408569b292c5a805c459d47a1d8f and versi...

9.8CVSS7.4AI score0.037EPSS

Exploits0References4

Positive Technologies•added 2024/12/20 12:0 a.m.•5 views

PT-2024-34465 · Unknown · Simplcommerce

Name of the Vulnerable Software and Affected Versions: SimplCommerce version at commit 230310c8d7a0408569b292c5a805c459d47a1d8f SimplCommerce version 1.0.0 Description: An integer overflow vulnerability exists in the shopping cart functionality of SimplCommerce. The issue lies in the quantity...

9.8CVSS7.3AI score0.037EPSS

Exploits0References14

Openbugbounty•added 2022/11/10 2:31 a.m.•12 views

addtocart.co.uk Cross Site Scripting vulnerability OBB-3046701

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

6.2AI score

Exploits0

Openbugbounty•added 2017/01/12 2:27 p.m.•11 views

royaldragonvodka.com XSS vulnerability

Vulnerable URL: http://www.royaldragonvodka.com/en/addtocart.php?id=4"...

6.9AI score

Exploits0

exploitpack•added 2014/10/02 12:0 a.m.•18 views

RBS Change Complet Open Source 3.6.8 - Cross-Site Request Forgery

RBS Change Complet Open Source 3.6.8 - Cross-Site Request Forgery Exploit Title: RBS Change Complet Open Source CSRF Google Dork: intext:"une réalisation rbs" Date: 10/01/2014 Exploit Author: KrustyHack Vendor Homepage: http://www.rbschange.fr/ Software Link:...

7.5AI score

Exploits0

Prion•added 2008/09/15 5:12 p.m.•12 views

Sql injection

SQL injection vulnerability in index.php in PHP Coupon Script 4.0 allows remote attackers to execute arbitrary SQL commands via the id parameter in an addtocart action, a different vector than CVE-2007-2672...

7.5CVSS8.8AI score0.00963EPSS

Exploits2References5Affected Software1

CVE•added 2008/09/15 4:0 p.m.•40 views

CVE-2008-4090

CVE-2008-4090 : Affects PHP Coupon Script 4.0. The vulnerability is in index.php and allows SQL injection via the id parameter in an addtocart action, enabling remote arbitrary SQL execution.

7.5CVSS8.4AI score0.00436EPSS

Exploits1References5Affected Software1

exploitpack•added 2008/09/02 12:0 a.m.•34 views

Coupon Script 4.0 - id SQL Injection

Coupon Script 4.0 - id SQL Injection || | | Coupon Script 4.0 id Remote SQL Injection Vulnerability | | |---------------------Hussin X----------------------| | | Author: Hussin X | | Home : WwW.Hussin-X.CoM | WwW.tryag.CoM | | email: darkangelg85atYahooDoTcom | | | | | | | script :...

Exploits0

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by