26 matches found
CVE-2026-0586
A vulnerability was detected in code-projects Online Product Reservation System 1.0. The affected element is an unknown function of the file handgunner-administrator/prod.php. Performing a manipulation of the argument cat results in cross site scripting. The attack is possible to be carried out...
CVE-2026-0586
CVE-2026-0586 affects code-projects Online Product Reservation System 1.0. The vulnerability is in file handgunner-administrator/prod.php, in an unknown function, where manipulating the cat argument enables cross-site scripting. The attack is remote andthe exploit is public. Documented impact is ...
CVE-2026-0586 code-projects Online Product Reservation System prod.php cross site scripting
A vulnerability was detected in code-projects Online Product Reservation System 1.0. The affected element is an unknown function of the file handgunner-administrator/prod.php. Performing a manipulation of the argument cat results in cross site scripting. The attack is possible to be carried out...
CVE-2026-0577
A flaw has been found in code-projects Online Product Reservation System 1.0. Affected by this vulnerability is an unknown functionality of the file /handgunner-administrator/prod.php. Executing a manipulation can lead to unrestricted upload. It is possible to launch the attack remotely. The...
CVE-2026-0576
A vulnerability was detected in code-projects Online Product Reservation System 1.0. Affected is an unknown function of the file /handgunner-administrator/prod.php of the component Parameter Handler. Performing a manipulation of the argument cat/price/name/model/serial results in sql injection. I...
CVE-2026-0577
A flaw has been found in code-projects Online Product Reservation System 1.0. Affected by this vulnerability is an unknown functionality of the file /handgunner-administrator/prod.php. Executing a manipulation can lead to unrestricted upload. It is possible to launch the attack remotely. The...
CVE-2026-0577
CVE-2026-0577 affects code-projects Online Product Reservation System 1.0. The vulnerability is in an unknown functionality of the file /handgunner-administrator/prod.php, where manipulation can lead to an unrestricted file upload. It can be exploited remotely, and an exploit has been published. ...
CVE-2026-0576
A vulnerability was detected in code-projects Online Product Reservation System 1.0. Affected is an unknown function of the file /handgunner-administrator/prod.php of the component Parameter Handler. Performing a manipulation of the argument cat/price/name/model/serial results in sql injection. I...
CVE-2026-0576 code-projects Online Product Reservation System Parameter prod.php sql injection
A vulnerability was detected in code-projects Online Product Reservation System 1.0. Affected is an unknown function of the file /handgunner-administrator/prod.php of the component Parameter Handler. Performing a manipulation of the argument cat/price/name/model/serial results in sql injection. I...
CVE-2025-5127 Teledyne FLIR AX8 prod.php cross site scripting
A vulnerability was determined in Teledyne FLIR AX8 up to 1.46.16. This issue affects some unknown processing of the file /prod.php. Executing manipulation of the argument cmd can lead to cross site scripting. The attack may be launched remotely. The exploit has been publicly disclosed and may be...
CVE-2025-5127 Teledyne FLIR AX8 prod.php cross site scripting
A vulnerability was determined in Teledyne FLIR AX8 up to 1.46.16. This issue affects some unknown processing of the file /prod.php. Executing manipulation of the argument cmd can lead to cross site scripting. The attack may be launched remotely. The exploit has been publicly disclosed and may be...
Teledyne FLIR AX8 跨站脚本漏洞
Teledyne FLIR AX8 is a series of thermal surveillance cameras from Teledyne FLIR USA. A cross-site scripting vulnerability exists in Teledyne FLIR AX8 version 1.46.16 and earlier, which stems from a cross-site scripting attack due to the incorrect operation of the parameter cmd in the file...
optolumin.com XSS vulnerability
Open Bug Bounty ID: OBB-647890 Description| Value ---|--- Affected Website:| optolumin.com Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...
hibbitt.co.uk XSS vulnerability
Vulnerable URL: https://www.hibbitt.co.uk/prod.php?cat=22"';-- Details: Description| Value ---|--- Patched:| Yes, at 28.07.2017 Latest check for patch:| 28.07.2017 14:59 GMT Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank| 13153555 VIP website status:| No Check...
snowseasonsports.com XSS vulnerability
Vulnerable URL: http://www.snowseasonsports.com/prod.php?node=1349"=flexible-flyer-snow-screamer.WJmMNHWDtQ Details: Description| Value ---|--- Patched:| No Latest check for patch:| 28.07.2017 Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank| Unknown / Not calculated...
Alphabit Online SQL Injection
1-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=0 0 1 1 /' \ /'\ /\ \ /'\ 0 0 /, \ /\/\ \ \ \ \ ,/\ /\ \ 1 1 //\ \ /' \ /\ //\ Exploit database separated by exploit 0 0 // type local, remote, DoS, etc. 1 1 1 0 + Site : 1337day.com 0 1 + Support e-mail :...
Zorum 3.5 /gorum/prod.php 远程代码执行漏洞
BugCVE: CVE-2005-2651 BUGTRAQ: 14601 Zorum的/gorum/prod.php文件中存在远程代码执行漏洞: 07 $doubleApp = isset$argv1; ... 14 if $doubleApp 15 16 $appDir = $argv1; 17 system"mkdir $prodDir/$appDir"; ... Zorum 3.5 厂商补丁: Zorum ----- 目前厂商还没有提供补丁或者升级程序,我们建议使用此软件的用户随时关注厂商的主页以获取最新版本: http://zorum.phpoutsourcing.com/...
Sql injection
SQL injection vulnerability in prod.php in Maran PHP Shop allows remote attackers to execute arbitrary SQL commands via the cat parameter, a different vector than CVE-2008-4880...
CVE-2008-4879
CVE-2008-4879 is an SQL injection in Maran PHP Shop: the vulnerable file is prod.php and the issue arises from the cat parameter, allowing remote attackers to execute arbitrary SQL commands. This is a distinct vector from CVE-2008-4880. Public exploits exist (e.g., Exploit-DB 6953). No remediatio...
Maran PHP Shop (prod.php cat) SQL Injection Vulnerability
No description provided by source. Maran PHP Shop prod.php cat SQL Injection Vulnerability url: http://www.maran.pamil-visions.com/maranshop.php Author: JosS mail: sys-projectathotmaildotcom site: http://spanish-hackers.com team: Spanish Hackers Team - SHT This was written for educational purpose...