CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

An issue was discovered in Alphaware - Simple E-Commerce System v1.0. There is a SQL injection that can directly issue instructions to the background database system via /alphaware/details.php?id...

9.8CVSS7.8AI score0.0025EPSS

Exploits1References1

RedhatCVE•added 2025/05/23 2:57 a.m.•3 views

CVE-2023-0998

A vulnerability classified as critical has been found in SourceCodester Alphaware Simple E-Commerce System 1.0. This affects an unknown part of the file /alphaware/summary.php of the component Payment Handler. The manipulation of the argument amount leads to improper access controls. It is possib...

6.5CVSS7.5AI score0.0082EPSS

Exploits1References1

RedhatCVE•added 2025/05/23 2:31 a.m.•3 views

CVE-2023-1503

A vulnerability classified as critical has been found in SourceCodester Alphaware Simple E-Commerce System 1.0. This affects an unknown part of the file admin/adminindex.php. The manipulation of the argument username/password with the input admin' AND SELECT 8062 FROM SELECTSLEEP5meUD-- hLiX lead...

8.1CVSS7.4AI score0.00238EPSS

Exploits1References1

RedhatCVE•added 2025/05/23 2:13 a.m.•6 views

CVE-2023-1502

A vulnerability was found in SourceCodester Alphaware Simple E-Commerce System 1.0. It has been rated as critical. Affected by this issue is some unknown functionality of the file function/editcustomer.php. The manipulation of the argument firstname/mi/lastname with the input a' RLIKE SLEEP5 AND...

8.1CVSS7.3AI score0.00278EPSS

Exploits1References1

RedhatCVE•added 2025/05/22 10:34 p.m.•3 views

CVE-2022-2678

A vulnerability was found in SourceCodester Alphaware Simple E-Commerce System. It has been declared as critical. This vulnerability affects unknown code of the file adminfeature.php of the component Background Management Page. The manipulation leads to unrestricted upload. The attack can be...

8.8CVSS7.1AI score0.00421EPSS

Exploits1References1

RedhatCVE•added 2025/05/22 10:29 p.m.•3 views

CVE-2022-2682

A vulnerability, which was classified as problematic, has been found in SourceCodester Alphaware Simple E-Commerce System. Affected by this issue is some unknown functionality of the file stockin.php. The manipulation of the argument id with the input '" leads to cross site scripting. The attack...

5.4CVSS6.2AI score0.00212EPSS

Exploits1References1

RedhatCVE•added 2025/05/22 3:21 p.m.•3 views

CVE-2020-25362

The id paramater in Online Shopping Alphaware 1.0 has been discovered to be vulnerable to an Error-Based blind SQL injection in the /alphaware/details.php path. This allows an attacker to retrieve all databases...

7.5CVSS8.1AI score0.01298EPSS

Exploits1

RedhatCVE•added 2025/05/22 3:21 p.m.•2 views

CVE-2020-24208

A SQL injection vulnerability in SourceCodester Online Shopping Alphaware 1.0 allows remote unauthenticated attackers to bypass the authentication process via email and password parameters...

9.8CVSS8.6AI score0.0349EPSS

Exploits0

Packet Storm•added 2024/08/21 12:0 a.m.•317 views

Alphaware E-Commerce System 1.0 Code Injection

============================================================================================================================================= | Title : Alphaware E-CommerceSystem 1.0 php code injection Vulnerability | | Author : indoushka | | Tested on : windows 10 FrPro / browser : Mozilla firef...

7.4AI score

Exploits0

OSV•added 2023/03/20 9:15 a.m.•1 views

CVE-2023-1504

A vulnerability classified as critical was found in SourceCodester Alphaware Simple E-Commerce System 1.0. This vulnerability affects unknown code. The manipulation of the argument email/password with the input test1%40test.com ' AND SELECT 6077 FROM SELECTSLEEP5dltn AND 'PhRa'='PhRa leads to sql...

8.1CVSS5.2AI score0.00238EPSS

Exploits1References2

OSV•added 2023/03/20 9:15 a.m.•1 views

CVE-2023-1503

8.1CVSS5.2AI score0.00238EPSS

Exploits1References2