EUVD-2022-7588

Malicious code in bioql PyPI...

EUVD-2022-0553

Malicious code in bioql PyPI...

EUVD-2021-8695

Malicious code in bioql PyPI...

EUVD-2024-0439

Malicious code in bioql PyPI...

EUVD-2023-2303

Malicious code in bioql PyPI...

EUVD-2021-8660

Malicious code in bioql PyPI...

EUVD-2023-2187

Malicious code in bioql PyPI...

CVE-2024-26129

PrestaShop is an open-source e-commerce platform. Starting in version 8.1.0 and prior to version 8.1.4, PrestaShop is vulnerable to path disclosure in a JavaScript variable. A patch is available in version 8.1.4...

PrestaShop Security Breach

PrestaShop is an open source e-commerce solution from the American company PrestaShop. The solution provides multiple payment methods, short message alerts and product image zoom. A security vulnerability previously existed in PrestaShop axepta version 1.3.4, which stemmed from a lack of privileg...

EUVD-2022-6354

PrestaShop is an Open Source e-commerce platform. In versions from 1.6.0.10 and before 1.7.8.7 PrestaShop is subject to an SQL injection vulnerability which can be chained to call PHP's Eval function on attacker input. The problem is fixed in version 1.7.8.7. Users are advised to upgrade. Users...

Shopware Information Disclosure Vulnerability (CNVD-2021-45748)

Shopware is an open source e-commerce platform. A sensitive information disclosure vulnerability exists in versions of Shopware prior to 5.6.10. An attacker can exploit this vulnerability to obtain leaked system information via Error Handler...

crmeb server-side request forgery vulnerability

Zhongbang CRMEB is an open source e-commerce management system from Zhongbang Networks Zhongbang in Xi'an, China. A security vulnerability exists in CRMEB 3.1.0+, which stems from the strict domain name filtering in CRMEB 3.1.0+ leading to SSRF Server Side Request Forgery. No detailed vulnerabili...

Command execution vulnerability in CRMEB Min open source mall (CNVD-2021-34043)

CRMEB brand new a lightweight, high-performance open source e-commerce system . CRMEB Min open source mall there is a command execution vulnerability , an attacker can exploit the vulnerability to obtain server administrative privileges...

Prestashop cross-site scripting vulnerability (CNVD-2021-29732)

Prestashop is a set of open source e-commerce solutions from the United States Prestashop. The solution provides a variety of payment methods , short message alerts and product image scaling and other features . PrestaShop has a security vulnerability , the vulnerability stems from when the grid...

ShopXO Access Control Error Vulnerability

ShopXO is an open source enterprise-level open source e-commerce system. Shopxo v1.4.0 and v1.5.0 has an Access Control Error vulnerability, which can be exploited to obtain privileges in "index.php" by manipulating the parameter "user id" in the HTML request...

CVE-2021-21398

PrestaShop is a fully scalable open source e-commerce solution. In PrestaShop before version 1.7.7.3, an attacker can inject HTML when the Grid Column Type DataColumn is badly used. The problem is fixed in 1.7.7.3...

Smartstore SmartStoreNET Cross-Site Request Forgery Vulnerability

Smartstore SmartStoreNET is an open source e-commerce Web platform of Germany Smartstore company . The platform includes CRM, CMS, sales, marketing, payment, order processing and other functions. A cross-site request forgery vulnerability exists in Smartstore SmartStoreNET versions prior to 4.1.0...

Advisto PEEL SHOPPING Cross-Site Scripting Vulnerability

Advisto PEEL SHOPPING is an open source e-commerce system based on PHP and MySQL. A cross-site scripting vulnerability exists in Advisto PEEL SHOPPING, which arises from a lack of proper validation of client-side data by the web application. An attacker can exploit this vulnerability to execute...

Adobe Magento Cross-Site Scripting Vulnerability (CNVD-2021-13923)

Adobe Magento is Adobe's one with PHP written in open source e-commerce platform.Magento Community Edition is the community edition, later renamed Magento Open Source, Magento Enterprise Edition is the enterprise edition, later renamed Magento Magento Enterprise Edition is the enterprise edition,...

Arbitrary file download vulnerability exists in ShopXO (CNVD-2021-14523)

ShopXO is an open source enterprise-level open source e-commerce system. ShopXO has an arbitrary file download vulnerability that can be exploited by attackers to obtain sensitive information...