CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

A vulnerability, which was classified as critical, has been found in Codezips E-Commerce Site 1.0. Affected by this issue is some unknown functionality of the file admin/editproduct.php. The manipulation of the argument profilepic leads to unrestricted upload. The attack may be launched remotely...

8.8CVSS6.9AI score0.0015EPSS

Exploits1References1

RedhatCVE•added 2025/05/23 8:19 a.m.•5 views

CVE-2024-12794

A vulnerability, which was classified as critical, was found in Codezips E-Commerce Site 1.0. This affects an unknown part of the file /admin/editorder.php. The manipulation of the argument dstatus/quantity/ddate leads to sql injection. It is possible to initiate the attack remotely. The exploit...

9.8CVSS7.3AI score0.00197EPSS

Exploits1References1

RedhatCVE•added 2025/02/05 10:39 a.m.•4 views

CVE-2024-12884

A vulnerability was found in Codezips E-Commerce Website 1.0. It has been rated as critical. Affected by this issue is some unknown functionality of the file /login.php. The manipulation of the argument email leads to sql injection. The attack may be launched remotely. The exploit has been...

9.8CVSS7.2AI score0.00087EPSS

Exploits1References1

RedhatCVE•added 2025/02/05 10:32 a.m.•4 views

CVE-2024-12792

A vulnerability classified as critical was found in Codezips E-Commerce Site 1.0. Affected by this vulnerability is an unknown functionality of the file newadmin.php. The manipulation of the argument email leads to sql injection. The attack can be launched remotely. The exploit has been disclosed...

9.8CVSS7.3AI score0.00167EPSS

Exploits1References1

RedhatCVE•added 2025/02/05 10:23 a.m.•5 views

CVE-2024-12791

A vulnerability was found in Codezips E-Commerce Site 1.0. It has been rated as critical. This issue affects some unknown processing of the file signin.php. The manipulation of the argument email leads to sql injection. The attack may be initiated remotely. The exploit has been disclosed to the...

9.8CVSS7.3AI score0.00167EPSS

Exploits1References1

RedhatCVE•added 2025/02/05 1:41 a.m.•6 views

CVE-2024-11663

A vulnerability classified as critical was found in Codezips E-Commerce Site 1.0. Affected by this vulnerability is an unknown functionality of the file search.php. The manipulation of the argument keywords leads to sql injection. The attack can be launched remotely. The exploit has been disclose...

9.8CVSS7.4AI score0.00089EPSS

Exploits1References1

NVD•added 2024/12/21 2:15 p.m.•13 views

CVE-2024-12884

9.8CVSS0.00087EPSS

Exploits1References4

CVE•added 2024/12/21 2:0 p.m.•56 views

CVE-2024-12884

CVE-2024-12884 affects Codezips E-Commerce Website 1.0. The vulnerability is an SQL injection in the login.php function triggered by manipulating the email parameter, allowing remote exploitation. Multiple connected sources corroborate the issue and describe it as critical, with exploitation disc...

9.8CVSS7.4AI score0.00087EPSS

Exploits1References4Affected Software1

Cvelist•added 2024/12/21 2:0 p.m.•15 views

CVE-2024-12884 Codezips E-Commerce Website login.php sql injection

7.5CVSS0.00087EPSS

Exploits1References4

Vulnrichment•added 2024/12/21 2:0 p.m.•7 views

CVE-2024-12884 Codezips E-Commerce Website login.php sql injection

7.5CVSS6.9AI score0.00087EPSS

Exploits1References4

CNNVD•added 2024/12/21 12:0 a.m.•2 views

Codezips E-Commerce Website 注入漏洞

Codezips E-Commerce Website is an open source e-commerce website by Codezips. An injection vulnerability exists in Codezips E-Commerce Website version 1.0, which originates from an SQL injection in the parameter email...

9.8CVSS7.9AI score0.00087EPSS

Exploits1References5

NVD•added 2024/12/19 6:15 p.m.•12 views

CVE-2024-12794

9.8CVSS0.00197EPSS

Exploits1References4