EUVD-2025-199937

A weakness has been identified in winston-dsouza Ecommerce-Website up to 87734c043269baac0b4cfe9664784462138b1b2e. Affected by this issue is some unknown functionality of the file /includes/headermenu.php of the component GET Parameter Handler. Executing manipulation of the argument Error can lea...

CVE-2025-13793

A weakness has been identified in winston-dsouza Ecommerce-Website up to 87734c043269baac0b4cfe9664784462138b1b2e. Affected by this issue is some unknown functionality of the file /includes/headermenu.php of the component GET Parameter Handler. Executing manipulation of the argument Error can lea...

Ecommerce-Website 代码注入漏洞

Ecommerce-Website is a full-fledged e-commerce website by Winston Dsouza Individual Developer with an admin panel built using PHP and MySql. A code injection vulnerability exists in Ecommerce-Website, which stems from the incorrect operation of the parameter Error in the file...

EUVD-2025-1551

Malicious code in bioql PyPI...

CVE-2025-0214

A vulnerability was found in TMD Custom Header Menu 4.0.0.1 on OpenCart. It has been rated as problematic. This issue affects some unknown processing of the file /admin/index.php. The manipulation of the argument headermenuid leads to sql injection. The attack may be initiated remotely. The...

CVE-2025-0214

A vulnerability was found in TMD Custom Header Menu 4.0.0.1 on OpenCart. It has been rated as problematic. This issue affects some unknown processing of the file /admin/index.php. The manipulation of the argument headermenuid leads to sql injection. The attack may be initiated remotely. The...

CVE-2025-0214

CVE-2025-0214 affects OpenCart/OpenCart module TMD Custom Header Menu 4.0.0.1. The vulnerability resides in the admin/index.php processing of the headermenu_id parameter, allowing SQL injection with remote access. Impact is stated as partial confidentiality/integrity/availability implications per...

CVE-2025-0214 TMD Custom Header Menu index.php sql injection

A vulnerability was found in TMD Custom Header Menu 4.0.0.1 on OpenCart. It has been rated as problematic. This issue affects some unknown processing of the file /admin/index.php. The manipulation of the argument headermenuid leads to sql injection. The attack may be initiated remotely. The...

CVE-2025-0214 TMD Custom Header Menu index.php sql injection

A vulnerability was found in TMD Custom Header Menu 4.0.0.1 on OpenCart. It has been rated as problematic. This issue affects some unknown processing of the file /admin/index.php. The manipulation of the argument headermenuid leads to sql injection. The attack may be initiated remotely. The...

PT-2025-3786 · Unknown · Tmd Custom Header Menu

Name of the Vulnerable Software and Affected Versions: TMD Custom Header Menu version 4.0.0.1 Description: A problem was found in the processing of the file /admin/index.php. The manipulation of the headermenu id argument leads to SQL injection. The attack may be initiated remotely. The complexit...

GHSA-Q55C-HMPF-6H2G AzuraCast/AzuraCast vulnerable to cross-site scripting

AzuraCast/AzuraCast prior to version 0.18.0 is vulnerable to stored cross-site scripting. An issue was identified where a user who already had an AzuraCast account could update their display name to inject malicious JavaScript into the header menu of the site. In a majority of cases, this menu is...