10 matches found
EUVD-2025-7429
Malicious code in bioql PyPI...
EUVD-2021-32730
Malicious code in bioql PyPI...
CVE-2025-11070
A vulnerability was identified in Projectworlds Online Shopping System 1.0. This affects an unknown part of the file /store/cartadd.php. Such manipulation of the argument ID leads to sql injection. The attack may be performed from remote. The exploit is publicly available and might be used...
CVE-2025-11070 Projectworlds Online Shopping System cart_add.php sql injection
A vulnerability was identified in Projectworlds Online Shopping System 1.0. This affects an unknown part of the file /store/cartadd.php. Such manipulation of the argument ID leads to sql injection. The attack may be performed from remote. The exploit is publicly available and might be used...
CVE-2025-11070
CVE-2025-11070 affects Projectworlds Online Shopping System 1.0. The vulnerable component is the file /store/cart_add.php, where manipulating the ID parameter enables a SQL injection. Public exploitability is indicated, with remote access possible and high impact on confidentiality, integrity, an...
CVE-2025-7211 code-projects LifeStyle Store cart_add.php sql injection
A vulnerability was found in code-projects LifeStyle Store 1.0. It has been declared as critical. This vulnerability affects unknown code of the file /cartadd.php. The manipulation of the argument ID leads to sql injection. The attack can be initiated remotely. The exploit has been disclosed to t...
CVE-2025-1903 Codezips Online Shopping Website cart_add.php sql injection
A vulnerability was found in Codezips Online Shopping Website 1.0. It has been rated as critical. This issue affects some unknown processing of the file /cartadd.php. The manipulation of the argument id leads to sql injection. The attack may be initiated remotely. The exploit has been disclosed t...
CVE-2025-1903 Codezips Online Shopping Website cart_add.php sql injection
A vulnerability was found in Codezips Online Shopping Website 1.0. It has been rated as critical. This issue affects some unknown processing of the file /cartadd.php. The manipulation of the argument id leads to sql injection. The attack may be initiated remotely. The exploit has been disclosed t...
CVE-2021-46024
Projectworlds online-shopping-webvsite-in-php 1.0 suffers from a SQL Injection vulnerability via the "id" parameter in cartadd.php, No login is required...
CVE-2021-46024
CVE-2021-46024 affects the projectworlds online-shopping-webvsite-in-php 1.0, with a SQL Injection vulnerability in cart_add.php through the id parameter. No login is required, indicating unauthenticated database access potential via the vulnerable parameter. Root cause: lack of input validation/...