48 matches found
CVE-2024-12792
A vulnerability classified as critical was found in Codezips E-Commerce Site 1.0. Affected by this vulnerability is an unknown functionality of the file newadmin.php. The manipulation of the argument email leads to sql injection. The attack can be launched remotely. The exploit has been disclosed...
CVE-2024-12792
A vulnerability classified as critical was found in Codezips E-Commerce Site 1.0. Affected by this vulnerability is an unknown functionality of the file newadmin.php. The manipulation of the argument email leads to sql injection. The attack can be launched remotely. The exploit has been disclosed...
CVE-2024-12794 Codezips E-Commerce Site editorder.php sql injection
A vulnerability, which was classified as critical, was found in Codezips E-Commerce Site 1.0. This affects an unknown part of the file /admin/editorder.php. The manipulation of the argument dstatus/quantity/ddate leads to sql injection. It is possible to initiate the attack remotely. The exploit...
CVE-2024-12794 Codezips E-Commerce Site editorder.php sql injection
A vulnerability, which was classified as critical, was found in Codezips E-Commerce Site 1.0. This affects an unknown part of the file /admin/editorder.php. The manipulation of the argument dstatus/quantity/ddate leads to sql injection. It is possible to initiate the attack remotely. The exploit...
CVE-2024-12794
CVE-2024-12794 affects Codezips E-Commerce Site 1.0, specifically the /admin/editorder.php file. The vulnerability arises from manipulating the dstatus/quantity/ddate parameter, leading to SQL injection. Evidence across multiple sources confirms remote feasibility and public disclosure, indicatin...
CVE-2024-12792 Codezips E-Commerce Site newadmin.php sql injection
A vulnerability classified as critical was found in Codezips E-Commerce Site 1.0. Affected by this vulnerability is an unknown functionality of the file newadmin.php. The manipulation of the argument email leads to sql injection. The attack can be launched remotely. The exploit has been disclosed...
CVE-2024-12792
CVE-2024-12792 affects Codezips E-Commerce Site 1.0. The vulnerability is an SQL injection in the parameter email of the file newadmin.php, enabling remote exploitation. Multiple connected sources corroborate the issue and indicate exploitation has been disclosed publicly. The CVE is characterize...
CVE-2024-12792 Codezips E-Commerce Site newadmin.php sql injection
A vulnerability classified as critical was found in Codezips E-Commerce Site 1.0. Affected by this vulnerability is an unknown functionality of the file newadmin.php. The manipulation of the argument email leads to sql injection. The attack can be launched remotely. The exploit has been disclosed...
CVE-2024-12791 Codezips E-Commerce Site signin.php sql injection
A vulnerability was found in Codezips E-Commerce Site 1.0. It has been rated as critical. This issue affects some unknown processing of the file signin.php. The manipulation of the argument email leads to sql injection. The attack may be initiated remotely. The exploit has been disclosed to the...
CVE-2024-12791 Codezips E-Commerce Site signin.php sql injection
A vulnerability was found in Codezips E-Commerce Site 1.0. It has been rated as critical. This issue affects some unknown processing of the file signin.php. The manipulation of the argument email leads to sql injection. The attack may be initiated remotely. The exploit has been disclosed to the...
CVE-2024-12791
Codezips E-Commerce Site 1.0 has a SQL injection in signin.php via the email parameter. Multiple connected sources confirm remote exploitation and disclosure. The issue affects signin.php processing and can be triggered without authentication. Some entries cite a critical rating; others list gene...
Codezips E-Commerce Site 注入漏洞
Codezips E-Commerce Site is an open source e-commerce site by Codezips. An injection vulnerability exists in Codezips E-Commerce Site version 1.0, which originates from an SQL injection vulnerability contained in the email parameter of the newadmin.php file...
Codezips E-Commerce Site 注入漏洞
Codezips E-Commerce Site is an open source e-commerce site by Codezips. An injection vulnerability exists in Codezips E-Commerce Site version 1.0, which stems from an SQL injection vulnerability contained in the email parameter of the signin.php file...
PT-2024-17745 · Unknown · Codezips E-Commerce Site
Name of the Vulnerable Software and Affected Versions: Codezips E-Commerce Site version 1.0 Description: A critical issue was found in Codezips E-Commerce Site, affecting an unknown part of the file /admin/editorder.php. The manipulation of the argument dstatus/quantity/ddate leads to SQL...
PT-2024-17743 · Unknown · Codezips E-Commerce Site
Name of the Vulnerable Software and Affected Versions: Codezips E-Commerce Site version 1.0 Description: A critical issue has been found in the newadmin.php file, affecting an unknown functionality. The manipulation of the email argument leads to SQL injection. This issue can be exploited remotel...
CVE-2024-11663
A vulnerability classified as critical was found in Codezips E-Commerce Site 1.0. Affected by this vulnerability is an unknown functionality of the file search.php. The manipulation of the argument keywords leads to sql injection. The attack can be launched remotely. The exploit has been disclose...
CVE-2024-11663
Codezips E-Commerce Site 1.0 (search.php) is affected. The root cause is manipulation of the keywords argument, leading to an SQL injection vulnerability. The issue can be exploited remotely and has been publicly disclosed. Affected components: the search.php functionality; the vulnerability impa...
CVE-2024-11663 Codezips E-Commerce Site search.php sql injection
A vulnerability classified as critical was found in Codezips E-Commerce Site 1.0. Affected by this vulnerability is an unknown functionality of the file search.php. The manipulation of the argument keywords leads to sql injection. The attack can be launched remotely. The exploit has been disclose...
CVE-2024-11663 Codezips E-Commerce Site search.php sql injection
A vulnerability classified as critical was found in Codezips E-Commerce Site 1.0. Affected by this vulnerability is an unknown functionality of the file search.php. The manipulation of the argument keywords leads to sql injection. The attack can be launched remotely. The exploit has been disclose...
PT-2024-17173 · Unknown · Codezips E-Commerce Site
Name of the Vulnerable Software and Affected Versions: Codezips E-Commerce Site version 1.0 Description: A critical issue was found in the file search.php, where the manipulation of the keywords argument leads to sql injection. The attack can be launched remotely. The exploit has been disclosed t...