SourceCodester Pizzafy Ecommerce System 注入漏洞

SourceCodester Pizzafy Ecommerce System is an open-source e-commerce system developed by SourceCodester. Version 1.0 of the SourceCodester Pizzafy Ecommerce System has a SQL injection vulnerability. This vulnerability stems from the ID parameter in the deletecart function of the...

CVE-2026-4841

CVE-2026-4841 affects the code-projects Online Food Ordering System 1.0, specifically the Shopping Cart Module’s cart.php (form/cart.php). A vulnerability arises from manipulating the del argument, enabling a SQL injection. The issue is exploitable remotely and the exploit is publicly available. ...

SourceCodester Simple E-Commerce Bookstore 安全漏洞

SourceCodester Simple E-Commerce Bookstore is SourceCodester open source a simple e-commerce bookstore. A security vulnerability exists in SourceCodester Simple E-Commerce Bookstore version 1.0, which stems from an incorrect operation of the parameter remove in the file /cart.php, which could lea...

PT-2025-41221

Name of the Vulnerable Software and Affected Versions SourceCodester Simple E-Commerce Bookstore version 1.0 Description A SQL injection issue exists in the /cart.php file due to the manipulation of the remove argument. This allows for remote execution of attacks. The exploit has been publicly...

PT-2025-41262

Name of the Vulnerable Software and Affected Versions SourceCodester Farm Management System version 1.0 Description A flaw exists in SourceCodester Farm Management System 1.0 related to the processing of the /myCart.php file. Manipulation of the pid argument can lead to SQL injection. Remote...

Code-Projects LifeStyle Store 注入漏洞

Code-Projects LifeStyle Store is a Code-Projects open source store software. An injection vulnerability exists in Code-Projects LifeStyle Store version 1.0, which originates from an SQL injection in the ID parameter of the cartadd.php file...

Code-Projects Online Shoe Store 注入漏洞

Online Shoe Store is an online shoe store system. Online Shoe Store suffers from a SQL injection vulnerability that originates from the lack of validation of externally entered SQL statements in the parameter ID of the file /cart2.php. An attacker can exploit this vulnerability to execute illegal...

Code-Projects Point of Sales and Inventory Management System 注入漏洞

Code-Projects Point of Sales and Inventory Management System is an open source point of sale and inventory management system from Code-Projects. An injection vulnerability exists in Code-Projects Point of Sales and Inventory Management System version 1.0, which originates from an SQL injection...

Online Book System SQL注入漏洞

Online Book System is an online booking system. A SQL injection vulnerability exists in version 1.0 of the Online Book System due to a lack of validation of externally entered SQL statements in the quantity/remove parameter of the /cart.php file. An attacker can exploit this vulnerability to...

PT-2023-27702 · Kerawen · Kerawen

Name of the Vulnerable Software and Affected Versions: Kerawen versions prior to 2.5.1 Description: The issue is related to a SQL injection vulnerability. It occurs via the ocs id cart parameter at the KerawenDeliveryModuleFrontController::initContent function. Recommendations: For versions prior...

CVE-2020-21120

SQL Injection vulnerability in file home\controls\cart.class.php in UQCMS 2.1.3, allows attackers execute arbitrary commands via the cookiecart parameter to /index.php/cart/num...

Projectworlds Online Book Store Project In Php SQL注入漏洞

Projectworlds Online Shopping System is an online shopping system from the Austrian company Projectsworlds.A SQL injection vulnerability exists in Projectsworlds Online Book Store PHP, which stems from the fact that Projectsworlds Online Book Store PHP v1.0 is vulnerable to SQL injection via the...