Lucene search
K

26 matches found

RedhatCVE
RedhatCVE
added 2026/06/05 7:49 p.m.10 views

CVE-2026-5835

A flaw has been found in code-projects Online Shoe Store 1.0. Affected by this vulnerability is an unknown functionality of the file /admin/adminfootball.php. Executing a manipulation of the argument productname can lead to cross site scripting. It is possible to launch the attack remotely. The...

4.8CVSS3.6AI score0.00206EPSS
Exploits0References1
EUVD
EUVD
added 2026/04/09 6:30 a.m.7 views

EUVD-2026-20834

A flaw has been found in code-projects Online Shoe Store 1.0. Affected by this vulnerability is an unknown functionality of the file /admin/adminfootball.php. Executing a manipulation of the argument productname can lead to cross site scripting. It is possible to launch the attack remotely. The...

4.8CVSS4.4AI score0.00206EPSS
Exploits0References6
NVD
NVD
added 2026/04/09 4:17 a.m.7 views

CVE-2026-5835

A flaw has been found in code-projects Online Shoe Store 1.0. Affected by this vulnerability is an unknown functionality of the file /admin/adminfootball.php. Executing a manipulation of the argument productname can lead to cross site scripting. It is possible to launch the attack remotely. The...

4.8CVSS0.00206EPSS
Exploits0References5
Cvelist
Cvelist
added 2026/04/09 2:45 a.m.39 views

CVE-2026-5835 code-projects Online Shoe Store admin_football.php cross site scripting

A flaw has been found in code-projects Online Shoe Store 1.0. Affected by this vulnerability is an unknown functionality of the file /admin/adminfootball.php. Executing a manipulation of the argument productname can lead to cross site scripting. It is possible to launch the attack remotely. The...

4.8CVSS0.00206EPSS
Exploits0References5
Vulnrichment
Vulnrichment
added 2026/04/09 2:45 a.m.3 views

CVE-2026-5835 code-projects Online Shoe Store admin_football.php cross site scripting

A flaw has been found in code-projects Online Shoe Store 1.0. Affected by this vulnerability is an unknown functionality of the file /admin/adminfootball.php. Executing a manipulation of the argument productname can lead to cross site scripting. It is possible to launch the attack remotely. The...

4.8CVSS4.4AI score0.00206EPSS
Exploits0References5
ATTACKERKB
ATTACKERKB
added 2026/04/09 2:45 a.m.1 views

CVE-2026-5835

A flaw has been found in code-projects Online Shoe Store 1.0. Affected by this vulnerability is an unknown functionality of the file /admin/adminfootball.php. Executing a manipulation of the argument productname can lead to cross site scripting. It is possible to launch the attack remotely. The...

4.8CVSS4.4AI score0.00206EPSS
Exploits0References5Affected Software1
CVE
CVE
added 2026/04/09 2:45 a.m.16 views

CVE-2026-5835

CVE-2026-5835 affects code-projects Online Shoe Store 1.0. The vulnerability lies in the admin_football.php script, where manipulating the argument product_name can trigger cross-site scripting (XSS). Affected functionality is unspecified beyond /admin/admin_football.php. It can be exploited remo...

4.8CVSS4.4AI score0.00206EPSS
Exploits0References5
CNNVD
CNNVD
added 2026/04/09 12:0 a.m.9 views

Code-Projects Online Shoe Store 代码注入漏洞

Code-Projects Online Shoe Store is an open-source online shoe store system developed by Code-Projects. Version 1.0 of Code-Projects Online Shoe Store contains a code injection vulnerability. This vulnerability arises from incorrect handling of the parameter productname in the file...

4.8CVSS5.7AI score0.00206EPSS
Exploits0References5
RedhatCVE
RedhatCVE
added 2025/11/20 9:37 p.m.14 views

CVE-2025-13411

A vulnerability was found in Campcodes Retro Basketball Shoes Online Store 1.0. Affected by this vulnerability is an unknown functionality of the file /admin/adminfootball.php. Performing a manipulation of the argument productimage results in unrestricted upload. The attack is possible to be...

9.8CVSS4.9AI score0.00318EPSS
Exploits1References1
OSV
OSV
added 2025/11/19 9:15 p.m.5 views

CVE-2025-13411

A vulnerability was found in Campcodes Retro Basketball Shoes Online Store 1.0. Affected by this vulnerability is an unknown functionality of the file /admin/adminfootball.php. Performing a manipulation of the argument productimage results in unrestricted upload. The attack is possible to be...

9.8CVSS5.5AI score0.00318EPSS
Exploits1References5
Vulnrichment
Vulnrichment
added 2025/11/19 8:32 p.m.4 views

CVE-2025-13411 Campcodes Retro Basketball Shoes Online Store admin_football.php unrestricted upload

A vulnerability was found in Campcodes Retro Basketball Shoes Online Store 1.0. Affected by this vulnerability is an unknown functionality of the file /admin/adminfootball.php. Performing a manipulation of the argument productimage results in unrestricted upload. The attack is possible to be...

5.8CVSS4.9AI score0.00318EPSS
Exploits1References5
CVE
CVE
added 2025/11/19 8:32 p.m.15 views

CVE-2025-13411

CVE-2025-13411 affects Campcodes Retro Basketball Shoes Online Store 1.0. A vulnerability exists in the /admin/admin_football.php handler where manipulating the product_image argument enables unrestricted file uploads. The vulnerability can be exploited remotely, and public exploits exist. Numero...

9.8CVSS4.9AI score0.00318EPSS
Exploits1References5Affected Software1
Positive Technologies
Positive Technologies
added 2025/11/19 12:0 a.m.10 views

PT-2025-47530

Name of the Vulnerable Software and Affected Versions Campcodes Retro Basketball Shoes Online Store version 1.0 Description A flaw exists that allows for unrestricted file uploads. This is possible through manipulation of the product image argument in the /admin/admin football.php file. The attac...

5.8CVSS4.8AI score0.00318EPSS
Exploits1References7
RedhatCVE
RedhatCVE
added 2025/10/29 1:11 a.m.12 views

CVE-2025-12339

A security vulnerability has been detected in Campcodes Retro Basketball Shoes Online Store 1.0. This issue affects some unknown processing of the file /admin/adminfootball.php. The manipulation of the argument pid leads to sql injection. Remote exploitation of the attack is possible. The exploit...

9.8CVSS7.2AI score0.00382EPSS
Exploits1References1
NVD
NVD
added 2025/10/28 1:16 a.m.6 views

CVE-2025-12339

A security vulnerability has been detected in Campcodes Retro Basketball Shoes Online Store 1.0. This issue affects some unknown processing of the file /admin/adminfootball.php. The manipulation of the argument pid leads to sql injection. Remote exploitation of the attack is possible. The exploit...

9.8CVSS0.00382EPSS
Exploits1References5
OSV
OSV
added 2025/10/28 1:16 a.m.5 views

CVE-2025-12339

A security vulnerability has been detected in Campcodes Retro Basketball Shoes Online Store 1.0. This issue affects some unknown processing of the file /admin/adminfootball.php. The manipulation of the argument pid leads to sql injection. Remote exploitation of the attack is possible. The exploit...

9.8CVSS5.7AI score0.00382EPSS
Exploits1References5
EUVD
EUVD
added 2025/10/28 12:32 a.m.6 views

EUVD-2025-36391

A security vulnerability has been detected in Campcodes Retro Basketball Shoes Online Store 1.0. This issue affects some unknown processing of the file /admin/adminfootball.php. The manipulation of the argument pid leads to sql injection. Remote exploitation of the attack is possible. The exploit...

7.5CVSS6.5AI score0.00382EPSS
Exploits1References6
CVE
CVE
added 2025/10/28 12:32 a.m.23 views

CVE-2025-12339

The CVE-2025-12339 vulnerability affects Campcodes Retro Basketball Shoes Online Store 1.0, specifically the /admin/admin_football.php component. The issue arises from improper handling of the pid parameter, enabling SQL injection. Exploitation is described as remote-initializable, with public di...

9.8CVSS7.1AI score0.00382EPSS
Exploits1References5Affected Software1
Vulnrichment
Vulnrichment
added 2025/10/28 12:32 a.m.2 views

CVE-2025-12339 Campcodes Retro Basketball Shoes Online Store admin_football.php sql injection

A security vulnerability has been detected in Campcodes Retro Basketball Shoes Online Store 1.0. This issue affects some unknown processing of the file /admin/adminfootball.php. The manipulation of the argument pid leads to sql injection. Remote exploitation of the attack is possible. The exploit...

7.5CVSS6.6AI score0.00382EPSS
Exploits1References5
Cvelist
Cvelist
added 2025/10/28 12:32 a.m.10 views

CVE-2025-12339 Campcodes Retro Basketball Shoes Online Store admin_football.php sql injection

A security vulnerability has been detected in Campcodes Retro Basketball Shoes Online Store 1.0. This issue affects some unknown processing of the file /admin/adminfootball.php. The manipulation of the argument pid leads to sql injection. Remote exploitation of the attack is possible. The exploit...

7.5CVSS0.00382EPSS
Exploits1References5
Rows per page
Query Builder