Lucene search
K

48 matches found

OSV
OSV
added 2024/12/19 6:15 p.m.4 views

CVE-2024-12792

A vulnerability classified as critical was found in Codezips E-Commerce Site 1.0. Affected by this vulnerability is an unknown functionality of the file newadmin.php. The manipulation of the argument email leads to sql injection. The attack can be launched remotely. The exploit has been disclosed...

9.8CVSS5.8AI score0.00624EPSS
Exploits1References4
NVD
NVD
added 2024/12/19 6:15 p.m.66 views

CVE-2024-12792

A vulnerability classified as critical was found in Codezips E-Commerce Site 1.0. Affected by this vulnerability is an unknown functionality of the file newadmin.php. The manipulation of the argument email leads to sql injection. The attack can be launched remotely. The exploit has been disclosed...

9.8CVSS0.00624EPSS
Exploits1References4
Vulnrichment
Vulnrichment
added 2024/12/19 6:0 p.m.15 views

CVE-2024-12794 Codezips E-Commerce Site editorder.php sql injection

A vulnerability, which was classified as critical, was found in Codezips E-Commerce Site 1.0. This affects an unknown part of the file /admin/editorder.php. The manipulation of the argument dstatus/quantity/ddate leads to sql injection. It is possible to initiate the attack remotely. The exploit...

6.5CVSS7.3AI score0.00525EPSS
Exploits1References4
Cvelist
Cvelist
added 2024/12/19 6:0 p.m.24 views

CVE-2024-12794 Codezips E-Commerce Site editorder.php sql injection

A vulnerability, which was classified as critical, was found in Codezips E-Commerce Site 1.0. This affects an unknown part of the file /admin/editorder.php. The manipulation of the argument dstatus/quantity/ddate leads to sql injection. It is possible to initiate the attack remotely. The exploit...

6.5CVSS0.00525EPSS
Exploits1References4
CVE
CVE
added 2024/12/19 6:0 p.m.53 views

CVE-2024-12794

CVE-2024-12794 affects Codezips E-Commerce Site 1.0, specifically the /admin/editorder.php file. The vulnerability arises from manipulating the dstatus/quantity/ddate parameter, leading to SQL injection. Evidence across multiple sources confirms remote feasibility and public disclosure, indicatin...

9.8CVSS6.8AI score0.00525EPSS
Exploits1References4Affected Software1
Cvelist
Cvelist
added 2024/12/19 5:31 p.m.63 views

CVE-2024-12792 Codezips E-Commerce Site newadmin.php sql injection

A vulnerability classified as critical was found in Codezips E-Commerce Site 1.0. Affected by this vulnerability is an unknown functionality of the file newadmin.php. The manipulation of the argument email leads to sql injection. The attack can be launched remotely. The exploit has been disclosed...

7.5CVSS0.00624EPSS
Exploits1References4
CVE
CVE
added 2024/12/19 5:31 p.m.57 views

CVE-2024-12792

CVE-2024-12792 affects Codezips E-Commerce Site 1.0. The vulnerability is an SQL injection in the parameter email of the file newadmin.php, enabling remote exploitation. Multiple connected sources corroborate the issue and indicate exploitation has been disclosed publicly. The CVE is characterize...

9.8CVSS7.6AI score0.00624EPSS
Exploits1References4Affected Software1
Vulnrichment
Vulnrichment
added 2024/12/19 5:31 p.m.12 views

CVE-2024-12792 Codezips E-Commerce Site newadmin.php sql injection

A vulnerability classified as critical was found in Codezips E-Commerce Site 1.0. Affected by this vulnerability is an unknown functionality of the file newadmin.php. The manipulation of the argument email leads to sql injection. The attack can be launched remotely. The exploit has been disclosed...

7.5CVSS7.4AI score0.00624EPSS
Exploits1References4
Cvelist
Cvelist
added 2024/12/19 5:31 p.m.25 views

CVE-2024-12791 Codezips E-Commerce Site signin.php sql injection

A vulnerability was found in Codezips E-Commerce Site 1.0. It has been rated as critical. This issue affects some unknown processing of the file signin.php. The manipulation of the argument email leads to sql injection. The attack may be initiated remotely. The exploit has been disclosed to the...

7.5CVSS0.00633EPSS
Exploits1References4
Vulnrichment
Vulnrichment
added 2024/12/19 5:31 p.m.12 views

CVE-2024-12791 Codezips E-Commerce Site signin.php sql injection

A vulnerability was found in Codezips E-Commerce Site 1.0. It has been rated as critical. This issue affects some unknown processing of the file signin.php. The manipulation of the argument email leads to sql injection. The attack may be initiated remotely. The exploit has been disclosed to the...

7.5CVSS7.3AI score0.00633EPSS
Exploits1References4
CVE
CVE
added 2024/12/19 5:31 p.m.54 views

CVE-2024-12791

Codezips E-Commerce Site 1.0 has a SQL injection in signin.php via the email parameter. Multiple connected sources confirm remote exploitation and disclosure. The issue affects signin.php processing and can be triggered without authentication. Some entries cite a critical rating; others list gene...

9.8CVSS7.5AI score0.00633EPSS
Exploits1References4Affected Software1
CNNVD
CNNVD
added 2024/12/19 12:0 a.m.4 views

Codezips E-Commerce Site 注入漏洞

Codezips E-Commerce Site is an open source e-commerce site by Codezips. An injection vulnerability exists in Codezips E-Commerce Site version 1.0, which originates from an SQL injection vulnerability contained in the email parameter of the newadmin.php file...

9.8CVSS7.7AI score0.00624EPSS
Exploits1References4
CNNVD
CNNVD
added 2024/12/19 12:0 a.m.4 views

Codezips E-Commerce Site 注入漏洞

Codezips E-Commerce Site is an open source e-commerce site by Codezips. An injection vulnerability exists in Codezips E-Commerce Site version 1.0, which stems from an SQL injection vulnerability contained in the email parameter of the signin.php file...

9.8CVSS7.7AI score0.00633EPSS
Exploits1References4
Positive Technologies
Positive Technologies
added 2024/12/19 12:0 a.m.5 views

PT-2024-17745 · Unknown · Codezips E-Commerce Site

Name of the Vulnerable Software and Affected Versions: Codezips E-Commerce Site version 1.0 Description: A critical issue was found in Codezips E-Commerce Site, affecting an unknown part of the file /admin/editorder.php. The manipulation of the argument dstatus/quantity/ddate leads to SQL...

9.8CVSS7.2AI score0.00525EPSS
Exploits1References9
Positive Technologies
Positive Technologies
added 2024/12/19 12:0 a.m.5 views

PT-2024-17743 · Unknown · Codezips E-Commerce Site

Name of the Vulnerable Software and Affected Versions: Codezips E-Commerce Site version 1.0 Description: A critical issue has been found in the newadmin.php file, affecting an unknown functionality. The manipulation of the email argument leads to SQL injection. This issue can be exploited remotel...

9.8CVSS8.1AI score0.00624EPSS
Exploits1References8
NVD
NVD
added 2024/11/25 9:15 a.m.23 views

CVE-2024-11663

A vulnerability classified as critical was found in Codezips E-Commerce Site 1.0. Affected by this vulnerability is an unknown functionality of the file search.php. The manipulation of the argument keywords leads to sql injection. The attack can be launched remotely. The exploit has been disclose...

9.8CVSS0.00863EPSS
Exploits1References4
CVE
CVE
added 2024/11/25 8:31 a.m.70 views

CVE-2024-11663

Codezips E-Commerce Site 1.0 (search.php) is affected. The root cause is manipulation of the keywords argument, leading to an SQL injection vulnerability. The issue can be exploited remotely and has been publicly disclosed. Affected components: the search.php functionality; the vulnerability impa...

9.8CVSS7.5AI score0.00863EPSS
Exploits1References4Affected Software1
Vulnrichment
Vulnrichment
added 2024/11/25 8:31 a.m.12 views

CVE-2024-11663 Codezips E-Commerce Site search.php sql injection

A vulnerability classified as critical was found in Codezips E-Commerce Site 1.0. Affected by this vulnerability is an unknown functionality of the file search.php. The manipulation of the argument keywords leads to sql injection. The attack can be launched remotely. The exploit has been disclose...

7.5CVSS7.4AI score0.00863EPSS
Exploits1References4
Cvelist
Cvelist
added 2024/11/25 8:31 a.m.21 views

CVE-2024-11663 Codezips E-Commerce Site search.php sql injection

A vulnerability classified as critical was found in Codezips E-Commerce Site 1.0. Affected by this vulnerability is an unknown functionality of the file search.php. The manipulation of the argument keywords leads to sql injection. The attack can be launched remotely. The exploit has been disclose...

7.5CVSS0.00863EPSS
Exploits1References4
Positive Technologies
Positive Technologies
added 2024/11/25 12:0 a.m.10 views

PT-2024-17173 · Unknown · Codezips E-Commerce Site

Name of the Vulnerable Software and Affected Versions: Codezips E-Commerce Site version 1.0 Description: A critical issue was found in the file search.php, where the manipulation of the keywords argument leads to sql injection. The attack can be launched remotely. The exploit has been disclosed t...

9.8CVSS7.5AI score0.00863EPSS
Exploits1References9
Rows per page
Query Builder