Lucene search
+L

3007 matches found

cve
cve
added 2026/05/14 9:25 a.m.16 views

CVE-2026-2347

Summary : CVE-2026-2347 describes an authorization bypass in the Akilli Commerce Software Technologies Ltd. Co. E-Commerce Website, caused by a user-controlled key. This leads to session hijacking on the affected site. Affected scope : E-Commerce Website before version 4.5.001. Impact as stated :...

9.8CVSS5.8AI score0.00426EPSS
Exploits0References1
euvd
euvd
added 2026/05/14 9:21 a.m.16 views

EUVD-2025-209838

Improper neutralization of special elements used in an SQL command 'SQL injection' vulnerability in Akilli Commerce Software Technologies Ltd. Co. E-Commerce Website allows Blind SQL Injection. This issue affects E-Commerce Website: before 4.5.001...

9.8CVSS5.8AI score0.00358EPSS
Exploits0References1
cvelist
cvelist
added 2026/05/14 9:21 a.m.49 views

CVE-2025-11024 SQLi in Akıllı Ticaret's E-Commerce Pack

Improper neutralization of special elements used in an SQL command 'SQL injection' vulnerability in Akilli Commerce Software Technologies Ltd. Co. E-Commerce Website allows Blind SQL Injection. This issue affects E-Commerce Website: before 4.5.001...

9.8CVSS0.00358EPSS
Exploits0References1
cve
cve
added 2026/05/14 9:21 a.m.19 views

CVE-2025-11024

The CVE-2025-11024 entry describes an SQL injection vulnerability in Akilli Commerce Software Technologies Ltd. Co. E-Commerce Website prior to version 4.5.001. The issue is due to improper neutralization of special elements used in SQL commands, enabling a blind SQL injection. CVSS 3.1 base metr...

9.8CVSS5.8AI score0.00358EPSS
Exploits0References1
vulnrichment
vulnrichment
added 2026/05/14 9:21 a.m.8 views

CVE-2025-11024 SQLi in Akıllı Ticaret's E-Commerce Pack

Improper neutralization of special elements used in an SQL command 'SQL injection' vulnerability in Akilli Commerce Software Technologies Ltd. Co. E-Commerce Website allows Blind SQL Injection. This issue affects E-Commerce Website: before 4.5.001...

9.8CVSS5.8AI score0.00358EPSS
Exploits0References1
cnnvd
cnnvd
added 2026/05/14 12:0 a.m.23 views

Akıllı E-Commerce Website SQL注入漏洞

Akıllı E-Commerce Website is an e-commerce website system developed by the Turkish company Akıllı, aimed at online retail and digital sales scenarios. Versions of Akıllı E-Commerce Website prior to 4.5.001 contained a SQL injection vulnerability. This vulnerability stemmed from improper...

9.8CVSS5.9AI score0.00358EPSS
Exploits0References1
euvd
euvd
added 2026/05/12 12:32 p.m.14 views

EUVD-2025-209783

Improper neutralization of special elements used in an SQL command 'SQL injection' vulnerability in Akilli Commerce Software Technologies Ltd. Co. E-Commerce Website allows SQL Injection. This issue affects E-Commerce Website: before 4.5.001...

9.8CVSS5.8AI score0.0026EPSS
Exploits0References2
attackerkb
attackerkb
added 2026/05/12 9:31 a.m.8 views

CVE-2025-6577

Improper neutralization of special elements used in an SQL command 'SQL injection' vulnerability in Akilli Commerce Software Technologies Ltd. Co. E-Commerce Website allows SQL Injection. This issue affects E-Commerce Website: before 4.5.001...

9.8CVSS5.8AI score0.0026EPSS
Exploits0References2
vulnrichment
vulnrichment
added 2026/05/12 9:31 a.m.9 views

CVE-2025-6577 SQLi in Akilli Commerce's E-Commerce Website

Improper neutralization of special elements used in an SQL command 'SQL injection' vulnerability in Akilli Commerce Software Technologies Ltd. Co. E-Commerce Website allows SQL Injection. This issue affects E-Commerce Website: before 4.5.001...

9.8CVSS5.8AI score0.0026EPSS
Exploits0References1
cve
cve
added 2026/05/12 9:31 a.m.14 views

CVE-2025-6577

CVE-2025-6577 : Affects Akilli Commerce Software Technologies Ltd. Co. E-Commerce Website before version 4.5.001 . Root cause: improper neutralization of special elements used in SQL commands leading to an SQL Injection vulnerability. Severity: CVSS v3.1 v3.1 base score 9.8 (CRITICAL) with high i...

9.8CVSS5.8AI score0.0026EPSS
Exploits0References1
cnnvd
cnnvd
added 2026/05/12 12:0 a.m.7 views

Akıllı E-Commerce Website SQL注入漏洞

Akıllı E-Commerce Website is an e-commerce website system developed by the Turkish company Akıllı, aimed at online retail and digital sales scenarios. Versions of Akıllı E-Commerce Website prior to 4.5.001 contained a SQL injection vulnerability. This vulnerability stemmed from improper...

9.8CVSS5.9AI score0.0026EPSS
Exploits0References1
ptsecurity
ptsecurity
added 2026/05/12 12:0 a.m.12 views

PT-2026-39999

Improper neutralization of special elements used in an SQL command 'SQL injection' vulnerability in Akilli Commerce Software Technologies Ltd. Co. E-Commerce Website allows SQL Injection. This issue affects E-Commerce Website: before 4.5.001...

9.8CVSS5.8AI score0.0026EPSS
Exploits0References2
cvelist
cvelist
added 2026/05/08 11:24 a.m.38 views

CVE-2026-3318 Multiple vulnerabilities in Cradle e-commerce

Open redirection vulnerability in the latest demo version of the Cradle eCommerce platform. The vulnerability occurs in the login form endpoint, where the ‘returnUrl’ parameter allows redirection because the web application accepts a URL as a parameter without properly validating it. As a result,...

5.3CVSS0.00339EPSS
Exploits0References1
attackerkb
attackerkb
added 2026/05/07 11:20 a.m.10 views

CVE-2026-3953

Improper neutralization of input during web page generation 'cross-site scripting' vulnerability in Gosoft Software Industry and Trade Ltd. Co. Proticaret E-Commerce allows Cross-Site Scripting XSS, Reflected XSS. This issue affects Proticaret E-Commerce: from v5.0.0 before V 6.0.1767.1383...

8.8CVSS5.8AI score0.00339EPSS
Exploits0References2Affected Software1
vulnrichment
vulnrichment
added 2026/05/07 11:20 a.m.6 views

CVE-2026-3953 Reflected XSS in Gosoft Software's Proticaret E-Commerce

Improper neutralization of input during web page generation 'cross-site scripting' vulnerability in Gosoft Software Industry and Trade Ltd. Co. Proticaret E-Commerce allows Cross-Site Scripting XSS, Reflected XSS. This issue affects Proticaret E-Commerce: from v5.0.0 before V 6.0.1767.1383...

8.8CVSS5.8AI score0.00339EPSS
Exploits0References1
cvelist
cvelist
added 2026/05/07 11:20 a.m.39 views

CVE-2026-3953 Reflected XSS in Gosoft Software's Proticaret E-Commerce

Improper neutralization of input during web page generation 'cross-site scripting' vulnerability in Gosoft Software Industry and Trade Ltd. Co. Proticaret E-Commerce allows Cross-Site Scripting XSS, Reflected XSS. This issue affects Proticaret E-Commerce: from v5.0.0 before V 6.0.1767.1383...

8.8CVSS0.00339EPSS
Exploits0References1
cve
cve
added 2026/05/07 11:20 a.m.16 views

CVE-2026-3953

CVE-2026-3953 describes a Reflected XSS in Gosoft Software Industry and Trade Ltd. Co. Proticaret E-Commerce due to improper neutralization of input during web page generation. Affected software: Proticaret E-Commerce from v5.0.0 to before v6.0.1767.1383. The CVSS 3.1 base metrics indicate HIGH i...

8.8CVSS5.8AI score0.00339EPSS
Exploits0References1
ptsecurity
ptsecurity
added 2026/05/07 12:0 a.m.18 views

PT-2026-38421

Name of the Vulnerable Software and Affected Versions Proticaret E-Commerce versions 5.0.0 through 6.0.1767.1382 Description Improper neutralization of input during web page generation allows for Reflected Cross-Site Scripting XSS, a flaw where an application includes untrusted data in a web page...

8.8CVSS5.9AI score0.00339EPSS
Exploits0References7
cnnvd
cnnvd
added 2026/05/07 12:0 a.m.11 views

Proticaret E-Commerce 跨站脚本漏洞

Proticaret E-Commerce is an online store and e-commerce management platform owned by Proticaret Company in Turkey. Versions of Proticaret E-Commerce from 5.0.0 to 6.0.1767.1383 had a cross-site scripting vulnerability. This vulnerability stemmed from improper input during web page generation, whi...

8.8CVSS5.6AI score0.00339EPSS
Exploits0References1
cnnvd
cnnvd
added 2026/04/29 12:0 a.m.10 views

SourceCodester Pizzafy Ecommerce System 注入漏洞

SourceCodester Pizzafy Ecommerce System is an open-source e-commerce system developed by SourceCodester. Version 1.0 of the SourceCodester Pizzafy Ecommerce System has a SQL injection vulnerability, which arises from the parameter operations in the function saveuser within the file...

5.8CVSS5.8AI score0.00202EPSS
Exploits0References1
Rows per page
Query Builder