Lucene search
K

7 matches found

CVE
CVE
added 2025/10/12 5:2 a.m.14 views

CVE-2025-11628

Affected: jimit105 Project-Online-Shopping-Website, Product Inventory Handler component, /delete.php. Issue: SQL injection via manipulated product_code argument. Impact: remote, network-accessible, exploitable without user interaction. Exploit published; rolling-release model means no version det...

5.8CVSS6.4AI score0.0024EPSS
Exploits0References4
CNNVD
CNNVD
added 2025/10/12 12:0 a.m.4 views

Project-Online-Shopping-Website SQL注入漏洞

Project-Online-Shopping-Website is an online shopping site by the individual developer Jimit Dholakia. Project-Online-Shopping-Website suffers from a SQL injection vulnerability that stems from incorrect manipulation of the parameter productcode in the file /delete.php, which could lead to a SQL...

5.8CVSS5.6AI score0.0024EPSS
Exploits0References4
CNNVD
CNNVD
added 2024/04/23 12:0 a.m.5 views

Online Furniture Shopping Ecommerce Website 跨站脚本漏洞

Online Furniture Shopping Ecommerce Website is an online furniture shopping ecommerce website. A cross-site scripting vulnerability exists in Online Furniture Shopping Ecommerce Website, which is caused by a cross-site scripting vulnerability in the txtAddress parameter of the login.php file...

6.1CVSS6.2AI score0.00574EPSS
Exploits1References5
HackRead
HackRead
added 2020/09/16 3:19 p.m.24 views

Popular shopping site leaks miners’ data in 6TB of database mess up

By Waqas The database belonging to windeln.de's production server was left exposed on a misconfigured server. This is a post from HackRead.com Read the original post: Popular shopping site leaks miners data in 6TB of database mess up...

2AI score
Exploits0
Malwarebytes
Malwarebytes
added 2020/09/01 2:15 p.m.19 views

New web skimmer steals credit card data, sends to crooks via Telegram

The digital credit card skimming landscape keeps evolving, often borrowing techniques used by other malware authors in order to avoid detection. As defenders, we look for any kind of artifacts and malicious infrastructure that we might be able to identify to protect our users and alert affected...

0.1AI score
Exploits0
Japan Vulnerability Notes
Japan Vulnerability Notes
added 2013/11/20 6:19 a.m.1 views

EC-CUBE vulnerable to information disclosure

Overview EC-CUBE from LOCKON CO.,LTD. is an open source system for creating shopping websites. EC-CUBE contains a vulnerability in processing the output of error logs, which may lead to information disclosure. Gen Sato reported this vulnerability to IPA. JPCERT/CC coordinated with the developer...

4.3CVSS6.4AI score0.01309EPSS
Exploits1References5
Japan Vulnerability Notes
Japan Vulnerability Notes
added 2008/05/20 3:0 p.m.3 views

Chama Cargo cross-site scripting vulnerability

Overview Chama Cargo, a cgi program written in perl for creating shopping websites, contains a cross-site scripting vulnerability. Impact An arbitrary script may be executed on the user's web browser. Solution None...

6.8CVSS6.3AI score0.014EPSS
Exploits0References8
Rows per page
Query Builder