Lucene search
K

13 matches found

RedhatCVE
RedhatCVE
added 2026/02/21 7:30 p.m.6 views

CVE-2025-15583

A weakness has been identified in detronetdip E-commerce 1.0.0. This affects the function getsafevalue of the file utility/function.php. Executing a manipulation can lead to cross site scripting. The attack can be executed remotely. The exploit has been made available to the public and could be...

5.4CVSS3.9AI score0.00239EPSS
Exploits1References1
NVD
NVD
added 2026/02/20 5:25 p.m.9 views

CVE-2025-15582

A security flaw has been discovered in detronetdip E-commerce 1.0.0. The impacted element is the function Delete/Update of the component Product Management Module. Performing a manipulation of the argument ID results in authorization bypass. Remote exploitation of the attack is possible. The...

8.1CVSS0.00348EPSS
Exploits1References6
NVD
NVD
added 2026/02/20 5:25 p.m.11 views

CVE-2025-15583

A weakness has been identified in detronetdip E-commerce 1.0.0. This affects the function getsafevalue of the file utility/function.php. Executing a manipulation can lead to cross site scripting. The attack can be executed remotely. The exploit has been made available to the public and could be...

5.4CVSS0.00239EPSS
Exploits1References6
Vulnrichment
Vulnrichment
added 2026/02/20 4:32 p.m.2 views

CVE-2025-15583 detronetdip E-commerce function.php get_safe_value cross site scripting

A weakness has been identified in detronetdip E-commerce 1.0.0. This affects the function getsafevalue of the file utility/function.php. Executing a manipulation can lead to cross site scripting. The attack can be executed remotely. The exploit has been made available to the public and could be...

5.1CVSS3.3AI score0.00239EPSS
Exploits1References6
Cvelist
Cvelist
added 2026/02/20 4:32 p.m.27 views

CVE-2025-15583 detronetdip E-commerce function.php get_safe_value cross site scripting

A weakness has been identified in detronetdip E-commerce 1.0.0. This affects the function getsafevalue of the file utility/function.php. Executing a manipulation can lead to cross site scripting. The attack can be executed remotely. The exploit has been made available to the public and could be...

5.1CVSS0.00239EPSS
Exploits1References6
Vulnrichment
Vulnrichment
added 2026/02/20 4:32 p.m.4 views

CVE-2025-15582 detronetdip E-commerce Product Management Update authorization

A security flaw has been discovered in detronetdip E-commerce 1.0.0. The impacted element is the function Delete/Update of the component Product Management Module. Performing a manipulation of the argument ID results in authorization bypass. Remote exploitation of the attack is possible. The...

5.5CVSS5.1AI score0.00348EPSS
Exploits1References6
Positive Technologies
Positive Technologies
added 2026/02/20 12:0 a.m.5 views

PT-2026-21248

Name of the Vulnerable Software and Affected Versions detronetdip E-commerce version 1.0.0 Description A security flaw exists in detronetdip E-commerce 1.0.0, specifically within the Delete/Update function of the Product Management Module. Manipulation of the ID argument can lead to authorization...

5.5CVSS5.6AI score0.00348EPSS
Exploits1References9
RedhatCVE
RedhatCVE
added 2026/02/09 7:23 p.m.6 views

CVE-2026-2164

A security flaw has been discovered in detronetdip E-commerce 1.0.0. This issue affects some unknown processing of the file /seller/assets/backend/profile/addadhar.php. Performing a manipulation of the argument File results in unrestricted upload. Remote exploitation of the attack is possible. Th...

9.8CVSS5.2AI score0.00451EPSS
Exploits1References1
ATTACKERKB
ATTACKERKB
added 2026/02/08 4:32 p.m.9 views

CVE-2026-2165

A weakness has been identified in detronetdip E-commerce 1.0.0. Impacted is an unknown function of the file /Admin/assets/backend/seller/addseller.php of the component Account Creation Endpoint. Executing a manipulation of the argument email can lead to missing authentication. The attack can be...

7.5CVSS7AI score0.0057EPSS
Exploits1References6Affected Software1
Cvelist
Cvelist
added 2026/02/08 4:32 p.m.30 views

CVE-2026-2165 detronetdip E-commerce Account Creation Endpoint add_seller.php missing authentication

A weakness has been identified in detronetdip E-commerce 1.0.0. Impacted is an unknown function of the file /Admin/assets/backend/seller/addseller.php of the component Account Creation Endpoint. Executing a manipulation of the argument email can lead to missing authentication. The attack can be...

7.5CVSS0.0057EPSS
Exploits1References6
EUVD
EUVD
added 2026/02/08 4:32 p.m.8 views

EUVD-2026-5785

A security flaw has been discovered in detronetdip E-commerce 1.0.0. This issue affects some unknown processing of the file /seller/assets/backend/profile/addadhar.php. Performing a manipulation of the argument File results in unrestricted upload. Remote exploitation of the attack is possible. Th...

7.5CVSS5.2AI score0.00451EPSS
Exploits1References6
ATTACKERKB
ATTACKERKB
added 2026/02/08 4:32 p.m.4 views

CVE-2026-2164

A security flaw has been discovered in detronetdip E-commerce 1.0.0. This issue affects some unknown processing of the file /seller/assets/backend/profile/addadhar.php. Performing a manipulation of the argument File results in unrestricted upload. Remote exploitation of the attack is possible. Th...

7.5CVSS7AI score0.00451EPSS
Exploits1References6Affected Software1
Positive Technologies
Positive Technologies
added 2026/02/08 12:0 a.m.9 views

PT-2026-6995

Name of the Vulnerable Software and Affected Versions detronetdip E-commerce version 1.0.0 Description A security flaw exists in detronetdip E-commerce 1.0.0 related to unrestricted file upload. The issue affects the processing of the file /seller/assets/backend/profile/addadhar.php. Manipulation...

7.5CVSS5.3AI score0.00451EPSS
Exploits1References8
Rows per page
Query Builder