Lucene search
K

4 matches found

ATTACKERKB
ATTACKERKB
added 2026/04/13 8:25 p.m.2 views

CVE-2026-32272

Craft Commerce is an ecommerce platform for Craft CMS. In versions 5.0.0 through 5.5.4, an SQL injection vulnerability exists where the ProductQuery::hasVariant and VariantQuery::hasProduct properties bypass the input sanitization blocklist added to ElementIndexesController in a prior security fi...

8.7CVSS6AI score0.00304EPSS
Exploits0References5Affected Software1
CNNVD
CNNVD
added 2026/04/13 12:0 a.m.7 views

Craft Commerce SQL注入漏洞

Craft Commerce is an e-commerce platform developed under the open-source Craft CMS framework. Versions of Craft Commerce 5.5.4 and earlier contain a SQL injection vulnerability. This vulnerability stems from bypassing input cleaning filters for the ProductQuery::hasVariant and...

8.7CVSS5.8AI score0.00304EPSS
Exploits0References4
EUVD
EUVD
added 2025/11/16 3:30 a.m.5 views

EUVD-2025-197712

A vulnerability was found in itsourcecode Inventory Management System 1.0. The impacted element is an unknown function of the file /index.php?q=product. Performing manipulation of the argument PROID results in sql injection. It is possible to initiate the attack remotely. The exploit has been mad...

6.5CVSS6.5AI score0.00289EPSS
Exploits1References6
Cvelist
Cvelist
added 2025/11/16 3:2 a.m.10 views

CVE-2025-13234 itsourcecode Inventory Management System index.php sql injection

A vulnerability was found in itsourcecode Inventory Management System 1.0. The impacted element is an unknown function of the file /index.php?q=product. Performing manipulation of the argument PROID results in sql injection. It is possible to initiate the attack remotely. The exploit has been mad...

6.5CVSS0.00289EPSS
Exploits1References5
Rows per page
Query Builder