6 matches found
CVE-2025-11476
A vulnerability was identified in SourceCodester Simple E-Commerce Bookstore 1.0. This affects an unknown part of the file /index.php. The manipulation of the argument loginusername leads to sql injection. The attack may be initiated remotely. The exploit is publicly available and might be used...
EUVD-2025-33168
A vulnerability was identified in SourceCodester Simple E-Commerce Bookstore 1.0. This affects an unknown part of the file /index.php. The manipulation of the argument loginusername leads to sql injection. The attack may be initiated remotely. The exploit is publicly available and might be used...
CVE-2025-11480
A vulnerability was detected in SourceCodester Simple E-Commerce Bookstore 1.0. The affected element is an unknown function of the file /register.php. Performing manipulation of the argument registerusername results in sql injection. The attack is possible to be carried out remotely. The exploit ...
CVE-2025-11430
The CVE affects SourceCodester Simple E-Commerce Bookstore 1.0 and specifically the /cart.php file where manipulating the remove parameter enables SQL injection. The issue’s root cause is improper handling/validation of the remove argument, allowing remote attacker input that can influence databa...
PT-2025-41269
Name of the Vulnerable Software and Affected Versions SourceCodester Simple E-Commerce Bookstore version 1.0 Description A flaw exists that allows for remote manipulation of the register username argument in the /register.php file, leading to SQL injection. The exploit is publicly available...
SourceCodester Simple E-Commerce Bookstore SQL注入漏洞
SourceCodester Simple E-Commerce Bookstore is SourceCodester open source a simple e-commerce bookstore . A SQL injection vulnerability exists in SourceCodester Simple E-Commerce Bookstore version 1.0, which stems from an incorrect manipulation of the parameter registerusername in the file...