CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

12 matches found

RedhatCVE•added 2026/01/09 10:58 a.m.•2 views

CVE-2025-61246

indieka900 online-shopping-system-php 1.0 is vulnerable to SQL Injection in master/reviewaction.php via the proId parameter...

9.8CVSS8AI score0.00014EPSS

Exploits2References1

NVD•added 2026/01/08 5:15 p.m.•1 views

CVE-2025-61246

indieka900 online-shopping-system-php 1.0 is vulnerable to SQL Injection in master/reviewaction.php via the proId parameter...

9.8CVSS0.00014EPSS

Exploits2References1

OSV•added 2026/01/08 5:15 p.m.•2 views

CVE-2025-61246

indieka900 online-shopping-system-php 1.0 is vulnerable to SQL Injection in master/reviewaction.php via the proId parameter...

9.8CVSS5.9AI score0.00014EPSS

Exploits2References1

Cvelist•added 2026/01/08 12:0 a.m.•22 views

CVE-2025-61246

indieka900 online-shopping-system-php 1.0 is vulnerable to SQL Injection in master/reviewaction.php via the proId parameter...

0.00014EPSS

Exploits2References1

CVE•added 2026/01/08 12:0 a.m.•12 views

CVE-2025-61246

CVE-2025-61246 affects indieka900 online-shopping-system-php 1.0. The vulnerability is SQL Injection in master/review_action.php via the proId parameter, caused by unsafely concatenating user input into SQL. This is documented across multiple sources in the connected documents, including Red Hat,...

9.8CVSS7.6AI score0.00014EPSS

Exploits2References1Affected Software1

Vulnrichment•added 2026/01/08 12:0 a.m.•3 views

CVE-2025-61246

indieka900 online-shopping-system-php 1.0 is vulnerable to SQL Injection in master/reviewaction.php via the proId parameter...

7.6AI score0.00014EPSS

Exploits2References1

Positive Technologies•added 2026/01/08 12:0 a.m.•4 views

PT-2026-1824

Name of the Vulnerable Software and Affected Versions indieka900 online-shopping-system-php version 1.0 Description The software is susceptible to a SQL Injection issue in the 'master/review action.php' file through the proId parameter. Recommendations Apply updates to address the SQL Injection...

9.8CVSS7.6AI score0.00014EPSS

Exploits2References4

RedhatCVE•added 2025/10/28 12:28 a.m.•10 views

CVE-2025-61247

indieka900 online-shopping-system-php 1.0 is vulnerable to SQL Injection in the password parameter of login.php...

8.2CVSS8.1AI score0.00035EPSS

Exploits0References1

NVD•added 2025/10/27 4:15 p.m.•6 views

CVE-2025-61247

indieka900 online-shopping-system-php 1.0 is vulnerable to SQL Injection in the password parameter of login.php...

8.2CVSS0.00035EPSS

Exploits0References1

Positive Technologies•added 2025/10/27 12:0 a.m.•9 views

PT-2025-43973

Name of the Vulnerable Software and Affected Versions indieka900 online-shopping-system-php version 1.0 Description The online-shopping-system-php software version 1.0 contains a SQL Injection issue in the password parameter of the 'login.php' file. This allows for potential unauthorized access o...

8.2CVSS7.6AI score0.00035EPSS

Exploits0References5

Vulnrichment•added 2025/10/27 12:0 a.m.•3 views

CVE-2025-61247

indieka900 online-shopping-system-php 1.0 is vulnerable to SQL Injection in the password parameter of login.php...

7.7AI score0.00035EPSS

Exploits0References1

CVE•added 2025/10/27 12:0 a.m.•7 views

CVE-2025-61247

CVE-2025-61247 affects indieka900 online-shopping-system-php 1.0. The vulnerability is a SQL Injection in the password parameter of login.php, as described across multiple sources (NVD entry and related advisories). The underlying issue is unvalidated SQL handling in the login flow, enabling pote...

8.2CVSS7.7AI score0.00035EPSS

Exploits0References1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by