Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

8 matches found

CNVD
CNVDadded 2025/06/27 12:0 a.m.1 views

Online Shoe Store edit_customer.php File SQL Injection Vulnerability

Online Shoe Store is an online shoe store system. Online Shoe Store suffers from a SQL injection vulnerability that originates from the lack of validation of an externally entered SQL statement in the parameter firstname in the file /function/editcustomer.php. An attacker can exploit this...

9.8CVSS8.3AI score0.00204EPSS
Exploits1References1
RedhatCVE
RedhatCVEadded 2025/06/23 8:39 a.m.1 views

CVE-2025-6307

A vulnerability was found in code-projects Online Shoe Store 1.0. It has been rated as critical. This issue affects some unknown processing of the file /function/editcustomer.php. The manipulation of the argument firstname leads to sql injection. The attack may be initiated remotely. The exploit...

9.8CVSS7.7AI score0.00204EPSS
Exploits1References1
CVE
CVEadded 2025/06/20 4:31 a.m.11 views

CVE-2025-6307

CVE-2025-6307 affects code-projects Online Shoe Store 1.0. Multiple sources describe a SQL injection in the edit_customer.php flow triggered by the firstname parameter, with remote feasibility and public disclosure. CNVD/CNNVD detail the vulnerability from lack of input validation in /function/ed...

9.8CVSS7.5AI score0.00204EPSS
Exploits1References5Affected Software1
RedhatCVE
RedhatCVEadded 2025/05/23 12:36 a.m.4 views

CVE-2022-40114

Online Banking System v1.0 was discovered to contain a SQL injection vulnerability via the custid parameter at /net-banking/editcustomer.php...

9.8CVSS8.3AI score0.0031EPSS
Exploits1References1
Vulnrichment
Vulnrichmentadded 2024/10/26 11:31 p.m.12 views

CVE-2024-10407 SourceCodester Petrol Pump Management Software edit_customer.php sql injection

A vulnerability, which was classified as critical, was found in SourceCodester Petrol Pump Management Software 1.0. This affects an unknown part of the file /admin/editcustomer.php. The manipulation of the argument id leads to sql injection. It is possible to initiate the attack remotely. The...

6.5CVSS7.4AI score0.00104EPSS
Exploits0References5
Prion
Prionadded 2023/03/20 9:15 a.m.17 views

Sql injection

A vulnerability was found in SourceCodester Alphaware Simple E-Commerce System 1.0. It has been rated as critical. Affected by this issue is some unknown functionality of the file function/editcustomer.php. The manipulation of the argument firstname/mi/lastname with the input a' RLIKE SLEEP5 AND...

5.1CVSS9.6AI score0.00278EPSS
Exploits1References2Affected Software1
Prion
Prionadded 2022/09/23 10:15 p.m.11 views

Sql injection

Online Banking System v1.0 was discovered to contain a SQL injection vulnerability via the custid parameter at /net-banking/editcustomer.php...

7.5CVSS9.7AI score0.0031EPSS
Exploits1References2Affected Software1
Cvelist
Cvelistadded 2022/09/23 9:16 p.m.12 views

CVE-2022-40114

Online Banking System v1.0 was discovered to contain a SQL injection vulnerability via the custid parameter at /net-banking/editcustomer.php...

10AI score0.0031EPSS
Exploits1References2
Rows per page
Query Builder