8 matches found
CVE-2024-44651
Kashipara Ecommerce Website 1.0 is vulnerable to SQL Injection via the recoveremail parameter in userpasswordrecover.php...
CVE-2024-44651
Kashipara Ecommerce Website 1.0 is vulnerable to SQL Injection via the recoveremail parameter in userpasswordrecover.php...
Kashipara Online Furniture Shopping Ecommerce Website 安全漏洞
Kashipara Online Furniture Shopping Ecommerce Website is a fast online shopping ecommerce website from Kashipara. A security vulnerability exists in Kashipara Online Furniture Shopping Ecommerce Website version 1.0, which stems from an unvalidated recoveremail parameter in userpasswordrecover.php...
EUVD-2024-55092
Kashipara Ecommerce Website 1.0 is vulnerable to SQL Injection via the recoveremail parameter in userpasswordrecover.php...
CVE-2024-44651
CVE-2024-44651 affects Kashipara Ecommerce Website 1.0. The vulnerability is a SQL Injection via the recover_email parameter in user_password_recover.php, caused by unvalidated input. Impact per the reports is potential unauthorized DB access; CVSS v3.1 base score 6.5 (Medium) with network access...
PT-2025-47177
Name of the Vulnerable Software and Affected Versions Kashipara Ecommerce Website version 1.0 Description The Kashipara Ecommerce Website is susceptible to a SQL Injection issue through the recover email parameter in the user password recover.php file. This allows for potential unauthorized acces...
CVE-2022-34989
Fruits Bazar v1.0 was discovered to contain a SQL injection vulnerability via the recoveremail parameter at userpasswordrecover.php...
PT-2022-22473 · Unknown · Fruits Bazar
Name of the Vulnerable Software and Affected Versions: Fruits Bazar version 1.0 Description: A SQL injection issue was found in Fruits Bazar via the recover email parameter at the "user password recover.php" endpoint. Recommendations: For Fruits Bazar version 1.0, as a temporary workaround,...