Lucene search
K

6 matches found

RedhatCVE
RedhatCVE
added 2025/10/10 1:31 a.m.7 views

CVE-2025-11476

A vulnerability was identified in SourceCodester Simple E-Commerce Bookstore 1.0. This affects an unknown part of the file /index.php. The manipulation of the argument loginusername leads to sql injection. The attack may be initiated remotely. The exploit is publicly available and might be used...

9.8CVSS7.2AI score0.00387EPSS
Exploits1References1
EUVD
EUVD
added 2025/10/08 3:32 p.m.6 views

EUVD-2025-33168

A vulnerability was identified in SourceCodester Simple E-Commerce Bookstore 1.0. This affects an unknown part of the file /index.php. The manipulation of the argument loginusername leads to sql injection. The attack may be initiated remotely. The exploit is publicly available and might be used...

7.5CVSS6.6AI score0.00387EPSS
Exploits1References6
NVD
NVD
added 2025/10/08 3:16 p.m.5 views

CVE-2025-11480

A vulnerability was detected in SourceCodester Simple E-Commerce Bookstore 1.0. The affected element is an unknown function of the file /register.php. Performing manipulation of the argument registerusername results in sql injection. The attack is possible to be carried out remotely. The exploit ...

9.8CVSS0.00387EPSS
Exploits1References5
CVE
CVE
added 2025/10/08 3:32 a.m.12 views

CVE-2025-11430

The CVE affects SourceCodester Simple E-Commerce Bookstore 1.0 and specifically the /cart.php file where manipulating the remove parameter enables SQL injection. The issue’s root cause is improper handling/validation of the remove argument, allowing remote attacker input that can influence databa...

9.8CVSS7.2AI score0.00387EPSS
Exploits1References5Affected Software1
Positive Technologies
Positive Technologies
added 2025/10/08 12:0 a.m.5 views

PT-2025-41269

Name of the Vulnerable Software and Affected Versions SourceCodester Simple E-Commerce Bookstore version 1.0 Description A flaw exists that allows for remote manipulation of the register username argument in the /register.php file, leading to SQL injection. The exploit is publicly available...

9.8CVSS7.4AI score0.00387EPSS
Exploits1References8
CNNVD
CNNVD
added 2025/10/08 12:0 a.m.4 views

SourceCodester Simple E-Commerce Bookstore SQL注入漏洞

SourceCodester Simple E-Commerce Bookstore is SourceCodester open source a simple e-commerce bookstore . A SQL injection vulnerability exists in SourceCodester Simple E-Commerce Bookstore version 1.0, which stems from an incorrect manipulation of the parameter registerusername in the file...

9.8CVSS7.8AI score0.00387EPSS
Exploits1References5
Rows per page
Query Builder