Lucene search
K

7 matches found

NVD
NVD
added 2025/10/08 11:15 p.m.6 views

CVE-2025-11509

A vulnerability was detected in code-projects E-Commerce Website 1.0. This impacts an unknown function of the file /pages/productadd.php. Performing manipulation of the argument prodname results in sql injection. The attack may be initiated remotely. The exploit is now public and may be used...

9.8CVSS0.00367EPSS
Exploits1References5
NVD
NVD
added 2024/02/29 1:42 a.m.33 views

CVE-2023-7108

A vulnerability classified as problematic has been found in code-projects E-Commerce Website 1.0. This affects an unknown part of the file usersignup.php. The manipulation of the argument firstname with the input leads to cross site scripting. It is possible to initiate the attack remotely. The...

6.1CVSS4.4AI score0.00833EPSS
Exploits1References3
NVD
NVD
added 2024/02/29 1:42 a.m.29 views

CVE-2023-7105

A vulnerability was found in code-projects E-Commerce Website 1.0. It has been classified as critical. Affected is an unknown function of the file indexsearch.php. The manipulation of the argument search leads to sql injection. It is possible to launch the attack remotely. The exploit has been...

9.8CVSS5.3AI score0.00871EPSS
Exploits1References3
Prion
Prion
added 2024/02/29 1:42 a.m.30 views

Sql injection

A vulnerability was found in code-projects E-Commerce Website 1.0. It has been classified as critical. Affected is an unknown function of the file indexsearch.php. The manipulation of the argument search leads to sql injection. It is possible to launch the attack remotely. The exploit has been...

5.8CVSS7.9AI score0.00871EPSS
Exploits1References3
Vulnrichment
Vulnrichment
added 2023/12/26 12:0 a.m.16 views

CVE-2023-7108 code-projects E-Commerce Website user_signup.php cross site scripting

A vulnerability classified as problematic has been found in code-projects E-Commerce Website 1.0. This affects an unknown part of the file usersignup.php. The manipulation of the argument firstname with the input leads to cross site scripting. It is possible to initiate the attack remotely. The...

5CVSS6.2AI score0.00833EPSS
Exploits1References3
CVE
CVE
added 2023/12/25 11:31 p.m.49 views

CVE-2023-7107

CVE-2023-7107 affects code-projects E-Commerce Website 1.0, exploiting SQL injection in the file user_signup.php. The vulnerability targets the parameters firstname, middlename, email, address, contact, and username, enabling remote manipulation of SQL queries. Impact is described with high conce...

9.8CVSS7.5AI score0.00924EPSS
Exploits1References3Affected Software1
CVE
CVE
added 2023/12/25 11:0 p.m.40 views

CVE-2023-7106

CVE-2023-7106 involves a SQL injection in the code-projects E-Commerce Website 1.0. The vulnerability stems from unsafely handling the prod_id parameter in the file product_details.php, enabling attacker-controlled input to influence SQL queries. Reports indicate the flaw can be exploited remotel...

8.8CVSS6.8AI score0.00776EPSS
Exploits1References3Affected Software1
Rows per page
Query Builder