3 matches found
CVE-2026-2865
The CVE-2026-2865 affects itsourcecode Agri-Trading Online Shopping System 1.0. A vulnerability exists in the HTTP POST Request Handler in admin/productcontroller.php where manipulating the Product argument can trigger SQL injection. The flaw can be exploited remotely and the exploit has been pub...
CVE-2025-13582
A security flaw has been discovered in code-projects Jonnys Liquor 1.0. Affected by this issue is some unknown functionality of the file /detail.php of the component GET Parameter Handler. Performing manipulation of the argument Product results in sql injection. Remote exploitation of the attack ...
CVE-2025-3560 ghostxbh uzy-ssm-mall product cross site scripting
A vulnerability was found in ghostxbh uzy-ssm-mall 1.0.0 and classified as problematic. This issue affects some unknown processing of the file /product. The manipulation of the argument productname leads to cross site scripting. The attack may be initiated remotely. The exploit has been disclosed...