193 matches found
SQL Injection Vulnerability in Laike E-commerce System (CNVD-2020-01258)
Laike e-commerce with independent copyright system, is an integrated e-commerce system all the functions of the platform. A SQL injection vulnerability exists in Laike E-commerce system, which can be exploited by attackers to access sensitive database information...
SQL Injection Vulnerability in Laike E-commerce System
Laike e-commerce with independent copyright system, is an integrated e-commerce system all the functions of the platform. A SQL injection vulnerability exists in Laike E-commerce system, which can be exploited by attackers to access sensitive database information...
SQL injection vulnerability in in***.php file of Laikai e-commerce system (CNVD-2020-00182)
Laike e-commerce system is an open source e-commerce system. Laike e-commerce system in.php file contains a SQL injection vulnerability. Attackers can use the vulnerability to obtain sensitive information in the database...
Magento Remote Code Execution Vulnerability (CNVD-2019-40728)
Magento is an open source PHP e-commerce system of the United States Magento company . The system provides rights management , search engines and payment gateways and other functions. A remote code execution vulnerability exists in Magento. An attacker can exploit this vulnerability to execute co...
S-CMS e-commerce system aj***.php page has SQL injection vulnerability
S-CMS e-commerce system is an e-commerce software. S-CMS e-commerce system aj.php page has a SQL injection vulnerability, which can be exploited by attackers to obtain sensitive information from the database...
S-CMS php version e-mall system v1.5 SQL injection vulnerability in background a**.p** C_** parameter
S-CMS e-commerce system is Zibo Shining Network Technology Co., Ltd. developed a specialized enterprise to provide solutions to build a station of the product. S-CMS php version of the e-commerce system v1.5 background a.p C parameter there is a SQL injection vulnerability, the attacker can use t...
XSS Vulnerability in Receiving Address Field of E-commerce System of Kunming Aoyuan Technology Co.
Kunming Aoyuan Technology Co., Ltd. is a high-tech enterprise engaged in system development, website construction and other Internet businesses. There is an XSS vulnerability in the receiving address field of the e-commerce system of Kunming Aoyuan Technology Co. Ltd, which can be exploited by...
Chengdu Renwu Technology Co., Ltd. e-commerce system has a logic flaw vulnerability
Chengdu RenWeiHang Technology Co., Ltd. focuses on enterprise-level e-commerce service technology, and provides various specialized e-commerce solutions and software systems from light application, professional level to platform level for traditional enterprises + Internet. Chengdu RenWeiHang...
Magento Cross-Site Request Forgery Vulnerability (CNVD-2019-26250)
Magento is an open source PHP e-commerce system of the United States Magento company . The system provides rights management , search engines and payment gateways and other functions . A cross-site request forgery vulnerability exists in Magento versions 2.1.18 before 2.1, 2.2.9 before 2.2.2 and...
S-CMS php version e-commerce system v1.5 SQL injection vulnerability in background aj***.php order parameter
Ltd. is mainly engaged in computer software, hardware development and sales, Internet technology development, technical services, network information systems integration, web design, network engineering design, installation, commissioning, maintenance, software outsourcing services. S-CMS php...
Magento cross-site scripting vulnerability (CNVD-2019-26217)
Magento is an open source PHP e-commerce system of the United States Magento company . The system provides rights management , search engine and payment gateway and other functions. A cross-site scripting vulnerability exists in Magento Open Source, Magento Commerce and Magento. The vulnerability...
Cloud EC B2C e-commerce system v1.2.4 xss vulnerability in the frontend
Cloud EC e-commerce system hereinafter referred to as Cloud EC is a set of PHP + MYSQL-based open source e-commerce system software developed independently by Cloud MYSQL e-commerce Co. Cloud EC e-commerce system V1.2.1 version of the existence of stored XSS vulnerability, an attacker can exploit...
DSMall open source multi-user mall system front-end command execution vulnerability
DSMall is an open source B2B2C e-commerce system created by Deshaun Networks. DSMall open source multi-user mall system in the foreground there is a command injection vulnerability . Attackers can use the vulnerability to obtain server privileges...
Stored Cross-Site Scripting Vulnerability at Order Invoice in Cloud EC E-commerce System
Cloud EC e-commerce system hereinafter referred to as Cloud EC is a set of PHP + MYSQL-based open source e-commerce system software developed independently by Cloud MYSQL e-commerce Co. Cloud EC e-commerce system order invoice at the existence of stored cross-site scripting vulnerabilities. An...
Cloud EC e-commerce system has multiple SQL injection vulnerabilities in the frontend
Cloud EC e-commerce system hereinafter referred to as Cloud EC is a set of PHP + MYSQL-based open source e-commerce system software developed independently by Cloud MYSQL e-commerce Co. Cloud EC e-commerce system has multiple SQL injection vulnerabilities in the frontend. Attackers can use the...
Magento cross-site scripting vulnerability (CNVD-2018-04517)
Magento is an open source PHP e-commerce system from Magento, which provides permission management, search engine and payment gateway. Magento has a cross-site scripting vulnerability that can be exploited by attackers to inject malicious JavaScript script code...
SQL Injection Vulnerability in Royal 100 E-commerce System
Shenzhen Royal Network Technology Co., Ltd. provides e-commerce enterprises and e-commerce logistics enterprises with enterprise-level e-commerce logistics system and supply chain consulting, design, development and technical operation and maintenance support services. A SQL injection vulnerabili...
Harbin Fengteng E-commerce Co., Ltd. SQL injection vulnerability exists in class_id parameter of pic.php page of Fengteng E-commerce station building system.
Fengteng e-commerce website building system is a website building system. Harbin Fengteng E-commerce Co., Ltd. fengteng e-commerce station building system pic.php page classid parameter SQL injection vulnerability, an attacker can exploit the vulnerability to obtain database sensitive information...
iWebShop open source mall system toSeller parameter SQL injection vulnerability
iWebShop is an open source WEB e-commerce B2B2C platform self-supporting + merchants stationed station-building system based on PHP language + MYSQL database development, using the MVC architecture Yii framework thinking design pattern carefully designed a product. iWebShop open source mall syste...
Arbitrary User Password Reset Vulnerability in BBCBuilder E-Commerce System
BBCBuilder e-commerce system is a b2b2c model developed by Yuanfeng Company, which supports the e-commerce system of platform self-supporting and supplier store coexistence mode. BBCBuilder e-commerce system version 2.6.1, there is an arbitrary user password reset vulnerability, attackers use the...