12 matches found
CVE-2025-52021
A SQL Injection vulnerability exists in the editproduct.php file of PuneethReddyHC Online Shopping System Advanced 1.0. The productid GET parameter is unsafely passed to a SQL query without proper validation or parameterization...
CVE-2025-52021
A SQL Injection vulnerability exists in the editproduct.php file of PuneethReddyHC Online Shopping System Advanced 1.0. The productid GET parameter is unsafely passed to a SQL query without proper validation or parameterization...
EUVD-2023-44440
Malicious code in bioql PyPI...
CVE-2025-8236
CVE-2025-8236 concerns the code-projects Online Ordering System 1.0. Multiple connected sources confirm a SQL injection vulnerability in the file /admin/edit_product.php, triggered by manipulating the Name argument. The issue is described as remote-exploitable and publicly disclosed across CVE li...
CVE-2025-7755 code-projects Online Ordering System edit_product.php unrestricted upload
A vulnerability was found in code-projects Online Ordering System 1.0. It has been rated as critical. This issue affects some unknown processing of the file /admin/editproduct.php. The manipulation of the argument image leads to unrestricted upload. The attack may be initiated remotely. The explo...
CVE-2024-42578
A Cross-Site Request Forgery CSRF in the component editproduct.php of Warehouse Inventory System v2.0 allows attackers to escalate privileges...
CVE-2024-42578
A Cross-Site Request Forgery CSRF in the component editproduct.php of Warehouse Inventory System v2.0 allows attackers to escalate privileges...
CVE-2023-3884 Campcodes Beauty Salon Management System edit_product.php cross site scripting
A vulnerability has been found in Campcodes Beauty Salon Management System 1.0 and classified as problematic. This vulnerability affects unknown code of the file /admin/editproduct.php. The manipulation of the argument id leads to cross site scripting. The attack can be initiated remotely. The...
CVE-2023-3884 Campcodes Beauty Salon Management System edit_product.php cross site scripting
A vulnerability has been found in Campcodes Beauty Salon Management System 1.0 and classified as problematic. This vulnerability affects unknown code of the file /admin/editproduct.php. The manipulation of the argument id leads to cross site scripting. The attack can be initiated remotely. The...
CVE-2023-3807 Campcodes Beauty Salon Management System edit_product.php sql injection
A vulnerability has been found in Campcodes Beauty Salon Management System 1.0 and classified as critical. Affected by this vulnerability is an unknown functionality of the file editproduct.php. The manipulation of the argument id leads to sql injection. The attack can be launched remotely. The...
Campcodes Beauty Salon Management System SQL注入漏洞
Campcodes Beauty Salon Management System is a beauty salon management system from Campcodes, Inc. A SQL injection vulnerability exists in Campcodes Beauty Salon Management System version 1.0, which originates from an unknown function in the file editproduct.php, which results in an sql injection...
CVE-2023-3473 Campcodes Retro Cellphone Online Store edit_product.php sql injection
A vulnerability, which was classified as critical, was found in Campcodes Retro Cellphone Online Store 1.0. Affected is an unknown function of the file /admin/editproduct.php. The manipulation of the argument username leads to sql injection. It is possible to launch the attack remotely. The explo...