Lucene search
K

8 matches found

RedhatCVE
RedhatCVE
added 2026/06/05 7:49 p.m.10 views

CVE-2026-5836

A vulnerability has been found in code-projects Online Shoe Store 1.0. Affected by this issue is some unknown functionality of the file /admin/adminproduct.php. The manipulation of the argument productname leads to cross site scripting. The attack can be initiated remotely. The exploit has been...

4.8CVSS3.6AI score0.00206EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/11/19 11:32 p.m.3 views

CVE-2025-13423 Campcodes Retro Basketball Shoes Online Store admin_product.php unrestricted upload

A flaw has been found in Campcodes Retro Basketball Shoes Online Store 1.0. The impacted element is an unknown function of the file /admin/adminproduct.php. Executing a manipulation of the argument productimage can lead to unrestricted upload. The attack may be launched remotely. The exploit has...

5.8CVSS4.9AI score0.00303EPSS
Exploits1References5
EUVD
EUVD
added 2025/10/28 12:32 a.m.4 views

EUVD-2025-36392

A weakness has been identified in Campcodes Retro Basketball Shoes Online Store 1.0. This vulnerability affects unknown code of the file /admin/adminproduct.ph. Executing manipulation of the argument pid can lead to sql injection. The attack may be launched remotely. The exploit has been made...

7.5CVSS6.7AI score0.00437EPSS
Exploits1References6
CNVD
CNVD
added 2025/07/30 12:0 a.m.4 views

Online Ordering System File Upload Vulnerability

Online Ordering System is an online ordering system. A file upload vulnerability exists in Online Ordering System, which stems from the image parameter in the /admin/product.php file not effectively limiting file uploads. No details of the vulnerability are available at this time...

9.8CVSS6.5AI score0.00396EPSS
Exploits1References1
OSV
OSV
added 2025/06/20 2:15 p.m.4 views

CVE-2025-6343

A vulnerability, which was classified as critical, was found in code-projects Online Shoe Store 1.0. Affected is an unknown function of the file /admin/adminproduct.php. The manipulation of the argument pid leads to sql injection. It is possible to launch the attack remotely. The exploit has been...

9.8CVSS5.7AI score
Exploits0References5
OSV
OSV
added 2023/04/05 8:15 a.m.4 views

CVE-2023-1857

A vulnerability was found in SourceCodester Online Computer and Laptop Store 1.0 and classified as problematic. Affected by this issue is some unknown functionality of the file /admin/?page=product/manageproduct&id=2. The manipulation of the argument Product Name leads to cross site scripting. Th...

6.1CVSS3.8AI score0.00611EPSS
Exploits1References3
CNNVD
CNNVD
added 2022/06/08 12:0 a.m.3 views

WordPress plugin Five Minute Webshop SQL注入漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation. WordPress is a blogging platform developed using the PHP language. The WordPress plugin is an application plugin. The WordPress Five Minute Webshop plugin 1.3.2 and earlier versions are vulnerable to SQL injection, whic...

4.9CVSS6.1AI score0.00951EPSS
Exploits2References3
ATTACKERKB
ATTACKERKB
added 2022/05/13 3:15 p.m.2 views

CVE-2022-30393

Merchandise Online Store v1.0 is vulnerable to SQL Injection via /vloggersmerch/admin/?page=product/manageproduct&id=...

7.2CVSS7.2AI score0.00929EPSS
Exploits1References2
Rows per page
Query Builder