Lucene search
K

15 matches found

Positive Technologies
Positive Technologies
added 2026/04/06 12:0 a.m.5 views

PT-2026-30514

A security flaw has been discovered in PHPGurukul Online Shopping Portal Project 2.1. The affected element is an unknown function of the file /order-details.php of the component Parameter Handler. The manipulation of the argument orderid results in sql injection. It is possible to launch the atta...

6.5CVSS6.5AI score0.00255EPSS
Exploits0References6
CVE
CVE
added 2025/11/17 12:0 a.m.10 views

CVE-2024-44659

CVE-2024-44659 affects the PHPGurukul Online Shopping Portal 2.0. The vulnerability is a SQL Injection in the forgot-password.php script through the email parameter, due to improper input handling. This can enable arbitrary SQL execution with high impact on confidentiality, integrity, and availab...

9.8CVSS7.6AI score0.00365EPSS
Exploits1References2Affected Software1
Positive Technologies
Positive Technologies
added 2025/11/17 12:0 a.m.6 views

PT-2025-47197

Name of the Vulnerable Software and Affected Versions PHPGurukul Online Shopping Portal version 2.0 Description The PHPGurukul Online Shopping Portal version 2.0 is susceptible to SQL Injection. This issue affects the login.php file and specifically involves the fullname, emailid, and contactno...

6.5CVSS7.6AI score0.00215EPSS
Exploits1References6
EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2021-25771

Malware in sbrugna...

6.1CVSS6.3AI score0.00562EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2025-24983

Malicious code in bioql PyPI...

9.8CVSS7.5AI score0.00371EPSS
Exploits0References5
RedhatCVE
RedhatCVE
added 2025/05/23 8:17 a.m.4 views

CVE-2024-10744

A vulnerability was found in PHPGurukul Online Shopping Portal 2.0. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the file /admin/assets/plugins/DataTables/media/unittesting/templates/complexheader2.php. The manipulation of the argument scripts...

6.1CVSS5.2AI score0.00367EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/22 8:42 p.m.4 views

CVE-2021-39412

Multiple Cross Site Scripting XSS vulnerabilities exists in PHPGurukul Shopping v3.1 via the 1 callback parameter in a serverside/scripts/idjsonp.php, b serverside/scripts/jsonp.php, and c scripts/objectsjsonp.php, the 2 value parameter in examplessupport/editableajax.php, and the 3 PHPSELF...

6.1CVSS6.4AI score0.00562EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/02/23 8:0 a.m.33 views

CVE-2025-1578 PHPGurukul/Campcodes Online Shopping Portal search-result.php sql injection

A vulnerability, which was classified as critical, was found in PHPGurukul/Campcodes Online Shopping Portal 2.1. This affects an unknown part of the file /search-result.php. The manipulation of the argument Product leads to sql injection. It is possible to initiate the attack remotely. The exploi...

6.5CVSS0.00379EPSS
Exploits1References4
OSV
OSV
added 2024/11/04 2:15 a.m.3 views

CVE-2024-10753

A vulnerability was found in PHPGurukul Online Shopping Portal 2.0. It has been declared as problematic. This vulnerability affects unknown code of the file admin/assets/plugins/DataTables/media/unittesting/templates/domdatatwoheaders.php. The manipulation of the argument scripts leads to cross...

5.4CVSS3.9AI score0.00379EPSS
Exploits1References5
OSV
OSV
added 2024/11/03 11:15 p.m.3 views

CVE-2024-10744

A vulnerability was found in PHPGurukul Online Shopping Portal 2.0. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the file /admin/assets/plugins/DataTables/media/unittesting/templates/complexheader2.php. The manipulation of the argument scripts...

6.1CVSS3.8AI score0.00367EPSS
Exploits1References5
OSV
OSV
added 2021/11/05 3:15 p.m.3 views

CVE-2021-39412

Multiple Cross Site Scripting XSS vulnerabilities exists in PHPGurukul Shopping v3.1 via the 1 callback parameter in a serverside/scripts/idjsonp.php, b serverside/scripts/jsonp.php, and c scripts/objectsjsonp.php, the 2 value parameter in examplessupport/editableajax.php, and the 3 PHPSELF...

6.1CVSS5.8AI score0.00562EPSS
Exploits0References1
NVD
NVD
added 2021/11/05 3:15 p.m.13 views

CVE-2021-39412

Multiple Cross Site Scripting XSS vulnerabilities exists in PHPGurukul Shopping v3.1 via the 1 callback parameter in a serverside/scripts/idjsonp.php, b serverside/scripts/jsonp.php, and c scripts/objectsjsonp.php, the 2 value parameter in examplessupport/editableajax.php, and the 3 PHPSELF...

6.1CVSS0.00562EPSS
Exploits0References1
Prion
Prion
added 2021/11/05 3:15 p.m.15 views

Cross site scripting

Multiple Cross Site Scripting XSS vulnerabilities exists in PHPGurukul Shopping v3.1 via the 1 callback parameter in a serverside/scripts/idjsonp.php, b serverside/scripts/jsonp.php, and c scripts/objectsjsonp.php, the 2 value parameter in examplessupport/editableajax.php, and the 3 PHPSELF...

4.3CVSS6.2AI score0.00562EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2021/11/05 2:43 p.m.28 views

CVE-2021-39412

Multiple Cross Site Scripting XSS vulnerabilities exists in PHPGurukul Shopping v3.1 via the 1 callback parameter in a serverside/scripts/idjsonp.php, b serverside/scripts/jsonp.php, and c scripts/objectsjsonp.php, the 2 value parameter in examplessupport/editableajax.php, and the 3 PHPSELF...

6.3AI score0.00562EPSS
Exploits0References1
CVE
CVE
added 2021/11/05 2:43 p.m.40 views

CVE-2021-39412

CVE-2021-39412 affects PHPGurukul Shopping v3.1, with multiple XSS vulnerabilities exposed via three vectors in server_side/scripts/id_jsonp.php, server_side/scripts/jsonp.php, and scripts/objects_jsonp.php (callback parameter); an additional vector in examples_support/editable_ajax.php (value pa...

6.1CVSS6.1AI score0.00562EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder