Lucene search
K

43 matches found

RedhatCVE
RedhatCVE
added 2025/05/22 3:20 p.m.8 views

CVE-2020-25087

Ecommerce-CodeIgniter-Bootstrap before 2020-08-03 allows XSS in application/modules/admin/views/advancedsettings/languages.php...

6.1CVSS6.1AI score0.00679EPSS
Exploits0
NVD
NVD
added 2024/07/05 2:15 p.m.29 views

CVE-2024-6526

A vulnerability classified as problematic has been found in CodeIgniter Ecommerce-CodeIgniter-Bootstrap up to 1998845073cf433bc6c250b0354461fbd84d0e03. This affects an unknown part. The manipulation of the argument searchtitle/catName/sub/name/categorie leads to cross site scripting. It is possib...

6.1CVSS0.00519EPSS
Exploits1References6
Cvelist
Cvelist
added 2024/07/05 1:31 p.m.33 views

CVE-2024-6526 CodeIgniter Ecommerce-CodeIgniter-Bootstrap cross site scripting

A vulnerability classified as problematic has been found in CodeIgniter Ecommerce-CodeIgniter-Bootstrap up to 1998845073cf433bc6c250b0354461fbd84d0e03. This affects an unknown part. The manipulation of the argument searchtitle/catName/sub/name/categorie leads to cross site scripting. It is possib...

5.3CVSS0.00519EPSS
Exploits1References6
CVE
CVE
added 2024/07/05 1:31 p.m.56 views

CVE-2024-6526

CVE-2024-6526 affects CodeIgniter Ecommerce-CodeIgniter-Bootstrap. The vulnerability arises from manipulation of the arguments search_title, catName, sub, name, and categorie, which leads to cross-site scripting (XSS). It can be exploited remotely, and public exploits/ PoC have been disclosed. A ...

6.1CVSS4.5AI score0.00519EPSS
Exploits1References6Affected Software1
OSV
OSV
added 2024/04/29 6:15 p.m.19 views

CVE-2024-31820

An issue in Ecommerce-CodeIgniter-Bootstrap commit v. d22b54e8915f167a135046ceb857caaf8479c4da allows a remote attacker to execute arbitrary code via the getLangFolderForEdit method of the Languages.php component...

9.8CVSS7.9AI score
Exploits0References3
NVD
NVD
added 2024/04/29 6:15 p.m.25 views

CVE-2024-31823

An issue in Ecommerce-CodeIgniter-Bootstrap commit v. d22b54e8915f167a135046ceb857caaf8479c4da allows a remote attacker to execute arbitrary code via the removeSecondaryImage method of the Publish.php component...

8.8CVSS7.5AI score0.01642EPSS
Exploits1References3
CNNVD
CNNVD
added 2024/04/29 12:0 a.m.5 views

Ecommerce-CodeIgniter-Bootstrap 安全漏洞

Ecommerce-CodeIgniter-Bootstrap is a responsive, multi-vendor, multi-language online store platform shopping cart solution. A security vulnerability exists in Ecommerce-CodeIgniter-Bootstrap, which stems from an arbitrary code execution vulnerability in the saveLanguageFiles method of the...

9.8CVSS7.8AI score0.01919EPSS
Exploits1References4
Cvelist
Cvelist
added 2024/04/29 12:0 a.m.25 views

CVE-2024-31821

SQL Injection vulnerability in Ecommerce-CodeIgniter-Bootstrap commit v. d22b54e8915f167a135046ceb857caaf8479c4da allows a remote attacker to execute arbitrary code via the manageQuantitiesAndProcurement method of the Ordersmodel.php component...

8.6AI score0.01075EPSS
Exploits1References3
Vulnrichment
Vulnrichment
added 2024/04/29 12:0 a.m.16 views

CVE-2024-31822

An issue in Ecommerce-CodeIgniter-Bootstrap commit v. d22b54e8915f167a135046ceb857caaf8479c4da allows a remote attacker to execute arbitrary code via the saveLanguageFiles method of the Languages.php component...

7.9AI score0.01919EPSS
Exploits1References3
Positive Technologies
Positive Technologies
added 2024/04/29 12:0 a.m.7 views

PT-2024-24229

Name of the Vulnerable Software and Affected Versions Ecommerce-CodeIgniter-Bootstrap version d22b54e8915f167a135046ceb857caaf8479c4da Description The issue allows a remote attacker to execute arbitrary code via the manageQuantitiesAndProcurement method of the Orders model.php component. This is ...

8CVSS8.1AI score0.01075EPSS
Exploits1References8
Positive Technologies
Positive Technologies
added 2024/04/29 12:0 a.m.8 views

PT-2024-24231 · Unknown · Ecommerce-Codeigniter-Bootstrap

Name of the Vulnerable Software and Affected Versions: Ecommerce-CodeIgniter-Bootstrap version d22b54e8915f167a135046ceb857caaf8479c4da Description: The issue allows a remote attacker to execute arbitrary code via the removeSecondaryImage method of the Publish.php component. This enables the...

8.8CVSS8.1AI score0.01642EPSS
Exploits1References6
CNNVD
CNNVD
added 2024/04/29 12:0 a.m.8 views

Ecommerce-CodeIgniter-Bootstrap 安全漏洞

Ecommerce-CodeIgniter-Bootstrap is a responsive, multi-vendor, multi-language online store platform shopping cart solution. A security vulnerability exists in Ecommerce-CodeIgniter-Bootstrap, which stems from an arbitrary code execution vulnerability in the removeSecondaryImage method of the...

8.8CVSS7.8AI score0.01642EPSS
Exploits1References4
Positive Technologies
Positive Technologies
added 2024/04/29 12:0 a.m.8 views

PT-2024-24228

Name of the Vulnerable Software and Affected Versions Ecommerce-CodeIgniter-Bootstrap affected versions not specified Description The issue allows a remote attacker to execute arbitrary code via the getLangFolderForEdit method of the Languages.php component. Recommendations At the moment, there i...

9.8CVSS7.4AI score0.01919EPSS
Exploits1References8
CVE
CVE
added 2024/04/29 12:0 a.m.69 views

CVE-2024-31820

An issue in Ecommerce-CodeIgniter-Bootstrap (Languages.php, getLangFolderForEdit) allows remote code execution via a crafted call to the getLangFolderForEdit method. The CVE-2024-31820 entry notes the vulnerability; Red Hat and OSV/CNNVD variants corroborate the same description. No affected vers...

9.8CVSS7.8AI score0.01919EPSS
Exploits1References3Affected Software1
Cvelist
Cvelist
added 2024/04/29 12:0 a.m.34 views

CVE-2024-31820

An issue in Ecommerce-CodeIgniter-Bootstrap commit v. d22b54e8915f167a135046ceb857caaf8479c4da allows a remote attacker to execute arbitrary code via the getLangFolderForEdit method of the Languages.php component...

7.8AI score0.01919EPSS
Exploits1References3
NVD
NVD
added 2023/01/20 7:15 p.m.19 views

CVE-2023-23010

Cross Site Scripting XSS vulnerability in Ecommerce-CodeIgniter-Bootstrap thru commit d5904379ca55014c5df34c67deda982c73dc7fe5 on Dec 27, 2022, allows attackers to execute arbitrary code via the languages and transload parameters in file addproduct.php...

6.1CVSS6.1AI score0.00608EPSS
Exploits1References3
OSV
OSV
added 2023/01/20 7:15 p.m.14 views

CVE-2023-23010

Cross Site Scripting XSS vulnerability in Ecommerce-CodeIgniter-Bootstrap thru commit d5904379ca55014c5df34c67deda982c73dc7fe5 on Dec 27, 2022, allows attackers to execute arbitrary code via the languages and transload parameters in file addproduct.php...

6.1CVSS6.4AI score
Exploits0References3
CNNVD
CNNVD
added 2023/01/20 12:0 a.m.5 views

Ecommerce-CodeIgniter-Bootstrap多款产品 跨站脚本漏洞

Ecommerce-CodeIgniter-Bootstrap is a responsive, multi-vendor, multi-language online store platform shopping cart solution. A security vulnerability exists in Ecommerce-CodeIgniter-Bootstrap. An attacker exploited the vulnerability to execute arbitrary code via the languages and transload...

6.1CVSS6.8AI score0.00608EPSS
Exploits1References4
Vulnrichment
Vulnrichment
added 2023/01/20 12:0 a.m.5 views

CVE-2023-23010

Cross Site Scripting XSS vulnerability in Ecommerce-CodeIgniter-Bootstrap thru commit d5904379ca55014c5df34c67deda982c73dc7fe5 on Dec 27, 2022, allows attackers to execute arbitrary code via the languages and transload parameters in file addproduct.php...

6.2AI score0.00608EPSS
Exploits1References3
Cvelist
Cvelist
added 2021/10/01 3:42 p.m.22 views

CVE-2021-40975

Cross-site scripting XSS vulnerability in application/modules/admin/views/ecommerce/products.php in Ecommerce-CodeIgniter-Bootstrap Codeigniter 3.1.11, Bootstrap 3.3.7 allows remote attackers to inject arbitrary web script or HTML via the searchtitle parameter...

6.2AI score0.00811EPSS
Exploits1References1
Rows per page
Query Builder