4 matches found
CVE-2025-6343 code-projects Online Shoe Store admin_product.php sql injection
A vulnerability, which was classified as critical, was found in code-projects Online Shoe Store 1.0. Affected is an unknown function of the file /admin/adminproduct.php. The manipulation of the argument pid leads to sql injection. It is possible to launch the attack remotely. The exploit has been...
CVE-2025-6305
CVE-2025-6305 affects code-projects Online Shoe Store 1.0. The vulnerability is an SQL injection in the admin feature file /admin/admin_feature.php, triggered by manipulating the product_code parameter. Root cause: lack of input validation in that parameter. Exploitation potential: remote and pub...
PT-2025-26285 · Unknown · Code-Projects Online Shoe Store
Name of the Vulnerable Software and Affected Versions: code-projects Online Shoe Store version 1.0 Description: A critical issue has been found in the code-projects Online Shoe Store, affecting an unknown functionality of the file /cart2.php. The manipulation of the ID argument leads to SQL...
PT-2025-3779 · Unknown · Code-Projects Online Shoe Store
Name of the Vulnerable Software and Affected Versions: code-projects Online Shoe Store version 1.0 Description: A critical issue has been found in the code-projects Online Shoe Store, affecting an unknown functionality of the file /admin/index.php. This leads to improper access controls, and the...