Lucene search
K

8 matches found

redhatcve
redhatcve
added 2025/11/18 12:11 a.m.9 views

CVE-2024-44651

Kashipara Ecommerce Website 1.0 is vulnerable to SQL Injection via the recoveremail parameter in userpasswordrecover.php...

6.5CVSS8AI score0.00215EPSS
Exploits1References1
nvd
nvd
added 2025/11/17 6:15 p.m.4 views

CVE-2024-44651

Kashipara Ecommerce Website 1.0 is vulnerable to SQL Injection via the recoveremail parameter in userpasswordrecover.php...

6.5CVSS0.00215EPSS
Exploits1References2
cnnvd
cnnvd
added 2025/11/17 12:0 a.m.4 views

Kashipara Online Furniture Shopping Ecommerce Website 安全漏洞

Kashipara Online Furniture Shopping Ecommerce Website is a fast online shopping ecommerce website from Kashipara. A security vulnerability exists in Kashipara Online Furniture Shopping Ecommerce Website version 1.0, which stems from an unvalidated recoveremail parameter in userpasswordrecover.php...

6.5CVSS7.7AI score0.00215EPSS
Exploits1References3
euvd
euvd
added 2025/11/17 12:0 a.m.4 views

EUVD-2024-55092

Kashipara Ecommerce Website 1.0 is vulnerable to SQL Injection via the recoveremail parameter in userpasswordrecover.php...

6.5CVSS7.5AI score0.00215EPSS
Exploits1References3
cve
cve
added 2025/11/17 12:0 a.m.9 views

CVE-2024-44651

CVE-2024-44651 affects Kashipara Ecommerce Website 1.0. The vulnerability is a SQL Injection via the recover_email parameter in user_password_recover.php, caused by unvalidated input. Impact per the reports is potential unauthorized DB access; CVSS v3.1 base score 6.5 (Medium) with network access...

6.5CVSS7.6AI score0.00215EPSS
Exploits1References2Affected Software1
ptsecurity
ptsecurity
added 2025/11/17 12:0 a.m.8 views

PT-2025-47177

Name of the Vulnerable Software and Affected Versions Kashipara Ecommerce Website version 1.0 Description The Kashipara Ecommerce Website is susceptible to a SQL Injection issue through the recover email parameter in the user password recover.php file. This allows for potential unauthorized acces...

6.5CVSS7.7AI score0.00215EPSS
Exploits1References5
osv
osv
added 2022/07/26 1:15 p.m.5 views

CVE-2022-34989

Fruits Bazar v1.0 was discovered to contain a SQL injection vulnerability via the recoveremail parameter at userpasswordrecover.php...

9.8CVSS5.8AI score0.00909EPSS
Exploits1References1
ptsecurity
ptsecurity
added 2022/07/26 12:0 a.m.4 views

PT-2022-22473 · Unknown · Fruits Bazar

Name of the Vulnerable Software and Affected Versions: Fruits Bazar version 1.0 Description: A SQL injection issue was found in Fruits Bazar via the recover email parameter at the "user password recover.php" endpoint. Recommendations: For Fruits Bazar version 1.0, as a temporary workaround,...

9.8CVSS9.7AI score0.00909EPSS
Exploits1References3
Rows per page
Query Builder