Lucene search
K

8 matches found

RedhatCVE
RedhatCVE
added 2025/11/21 12:18 a.m.11 views

CVE-2025-13424

A vulnerability has been found in Campcodes Supplier Management System 1.0. This affects an unknown function of the file /admin/addproduct.php. The manipulation of the argument txtProductName leads to sql injection. Remote exploitation of the attack is possible. The exploit has been disclosed to...

9.8CVSS6.8AI score0.00341EPSS
Exploits1References1
Cvelist
Cvelist
added 2025/11/20 12:2 a.m.10 views

CVE-2025-13424 Campcodes Supplier Management System add_product.php sql injection

A vulnerability has been found in Campcodes Supplier Management System 1.0. This affects an unknown function of the file /admin/addproduct.php. The manipulation of the argument txtProductName leads to sql injection. Remote exploitation of the attack is possible. The exploit has been disclosed to...

5.8CVSS0.00341EPSS
Exploits1References5
Positive Technologies
Positive Technologies
added 2025/11/20 12:0 a.m.5 views

PT-2025-47542

A vulnerability has been found in Campcodes Supplier Management System 1.0. This affects an unknown function of the file /admin/add product.php. The manipulation of the argument txtProductName leads to sql injection. Remote exploitation of the attack is possible. The exploit has been disclosed to...

5.8CVSS7AI score0.00341EPSS
Exploits1References6
RedhatCVE
RedhatCVE
added 2025/10/28 3:59 p.m.3 views

CVE-2025-12291

A vulnerability was found in ashymuzuro Full-Ecommece-Website and Muzuro Ecommerce System up to 1.1.0. This affects an unknown part of the file /admin/index.php?addproduct of the component Add Product Page. The manipulation results in unrestricted upload. The attack may be performed from remote...

5.8CVSS6.2AI score0.00276EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/10/27 3:32 p.m.2 views

CVE-2025-12291 ashymuzuro Full-Ecommece-Website/Muzuro Ecommerce System Add Product index.php unrestricted upload

A vulnerability was found in ashymuzuro Full-Ecommece-Website and Muzuro Ecommerce System up to 1.1.0. This affects an unknown part of the file /admin/index.php?addproduct of the component Add Product Page. The manipulation results in unrestricted upload. The attack may be performed from remote...

5.8CVSS6AI score0.00276EPSS
Exploits0References4
CVE
CVE
added 2025/10/27 3:32 p.m.12 views

CVE-2025-12291

Summary (CVE-2025-12291) ashymuzuro’s Full-Ecommece-Website and Muzuro Ecommerce System (up to 1.1.0) contain an unrestricted upload flaw in the Add Product Page at /admin/index.php?add_product. The root cause is an input/validation issue that allows remote attackers to upload arbitrary files, en...

5.8CVSS4.6AI score0.00276EPSS
Exploits0References4
CNNVD
CNNVD
added 2022/05/03 12:0 a.m.5 views

E-Commerce Website 跨站脚本漏洞

A cross-site scripting vulnerability exists in E-Commerce Website version 1.0, which originates from a cross-site scripting XSS vulnerability in /public/admin/index.php?addproduct that allows an attacker to inject a specially crafted payload into the product title text field by injecting speciall...

5.4CVSS5.7AI score0.00538EPSS
Exploits1References2
ATTACKERKB
ATTACKERKB
added 2022/04/04 2:15 p.m.3 views

CVE-2022-27435

An unrestricted file upload at /public/admin/index.php?addproduct of Ecommerce-Website v1.1.0 allows attackers to upload a webshell via the Product Image component...

8.8CVSS5.9AI score0.01681EPSS
Exploits1References4
Rows per page
Query Builder