Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

53 matches found

NVD
NVDadded 2026/03/24 12:16 a.m.0 views

CVE-2026-4613

A vulnerability was found in SourceCodester E-Commerce Site 1.0. This vulnerability affects unknown code of the file /products.php. The manipulation of the argument Search results in sql injection. The attack can be executed remotely. The exploit has been made public and could be used...

7.5CVSS0.00045EPSS
Exploits0References5
CNNVD
CNNVDadded 2026/03/24 12:0 a.m.3 views

SourceCodester E-Commerce Site SQL注入漏洞

SourceCodester E-Commerce Site is an e-commerce website developed under open source by SourceCodester. Version 1.0 of SourceCodester E-Commerce Site has a SQL injection vulnerability. This vulnerability arises from incorrect handling of the parameter Search in the file /products.php, which may le...

7.5CVSS7.1AI score0.00045EPSS
Exploits0References5
Cvelist
Cvelistadded 2026/03/23 11:4 p.m.22 views

CVE-2026-4613 SourceCodester E-Commerce Site products.php sql injection

A vulnerability was found in SourceCodester E-Commerce Site 1.0. This vulnerability affects unknown code of the file /products.php. The manipulation of the argument Search results in sql injection. The attack can be executed remotely. The exploit has been made public and could be used...

7.5CVSS0.00045EPSS
Exploits0References5
ATTACKERKB
ATTACKERKBadded 2026/03/23 11:4 p.m.0 views

CVE-2026-4613

A vulnerability was found in SourceCodester E-Commerce Site 1.0. This vulnerability affects unknown code of the file /products.php. The manipulation of the argument Search results in sql injection. The attack can be executed remotely. The exploit has been made public and could be used...

7.5CVSS6.9AI score0.00045EPSS
Exploits0References5Affected Software1
Positive Technologies
Positive Technologiesadded 2026/03/23 12:0 a.m.1 views

PT-2026-27258

A vulnerability was found in SourceCodester E-Commerce Site 1.0. This vulnerability affects unknown code of the file /products.php. The manipulation of the argument Search results in sql injection. The attack can be executed remotely. The exploit has been made public and could be used...

7.5CVSS6.9AI score0.00045EPSS
Exploits0References6
EUVD
EUVDadded 2025/10/07 12:30 a.m.2 views

EUVD-2021-12118

Malware in sbrugna...

9.8CVSS9.4AI score0.01018EPSS
Exploits1References2
EUVD
EUVDadded 2025/10/03 8:7 p.m.1 views

EUVD-2022-34927

Malicious code in bioql PyPI...

5.4CVSS5.8AI score0.00212EPSS
Exploits1References2
EUVD
EUVDadded 2025/10/03 8:7 p.m.1 views

EUVD-2023-23754

Malicious code in bioql PyPI...

6.1CVSS4.9AI score0.00195EPSS
Exploits0References2
RedhatCVE
RedhatCVEadded 2025/05/23 10:8 a.m.7 views

CVE-2024-30849

Arbitrary file upload vulnerability in Sourcecodester Complete E-Commerce Site v1.0, allows remote attackers to execute arbitrary code via filename parameter in admin/productsphoto.php...

9.8CVSS8.1AI score0.02181EPSS
Exploits1References1
RedhatCVE
RedhatCVEadded 2025/05/23 7:18 a.m.4 views

CVE-2024-8089

A vulnerability was found in SourceCodester E-Commerce System 1.0. It has been classified as critical. Affected is an unknown function of the file /ecommerce/admin/products/controller.php. The manipulation of the argument photo leads to unrestricted upload. It is possible to launch the attack...

9.8CVSS9.5AI score0.00107EPSS
Exploits1References1
RedhatCVE
RedhatCVEadded 2025/05/23 3:0 a.m.1 views

CVE-2023-1557

A vulnerability was found in SourceCodester E-Commerce System 1.0. It has been rated as critical. Affected by this issue is some unknown functionality of the file /ecommerce/admin/user/controller.php?action=edit of the component Username Handler. The manipulation of the argument USERID leads to...

9.8CVSS7.5AI score0.00221EPSS
Exploits0References1
RedhatCVE
RedhatCVEadded 2025/05/23 2:54 a.m.2 views

CVE-2023-1505

A vulnerability, which was classified as critical, has been found in SourceCodester E-Commerce System 1.0. This issue affects some unknown processing of the file /ecommerce/admin/settings/setDiscount.php. The manipulation of the argument id with the input 201737 AND SELECT 8973 FROM...

8.1CVSS7.4AI score0.0027EPSS
Exploits1References1
RedhatCVE
RedhatCVEadded 2025/05/22 8:31 p.m.2 views

CVE-2021-25207

Arbitrary file upload vulnerability in SourceCodester E-Commerce Website v 1.0 allows attackers to execute arbitrary code via the file upload to prodViewUpdate.php...

9.8CVSS8.1AI score0.01018EPSS
Exploits1References1
RedhatCVE
RedhatCVEadded 2025/05/22 6:25 p.m.3 views

CVE-2021-25204

Cross-site scripting XSS vulnerability in SourceCodester E-Commerce Website v 1.0 allows remote attackers to inject arbitrary web script or HTM via the subject field to feedbackprocess.php...

5.4CVSS6.1AI score0.00176EPSS
Exploits1References1
OSV
OSVadded 2024/08/27 9:15 p.m.0 views

CVE-2024-8217

A vulnerability has been found in SourceCodester E-Commerce Website 1.0 and classified as critical. This vulnerability affects unknown code of the file /Admin/registration.php. The manipulation of the argument fname leads to sql injection. The attack can be initiated remotely. The exploit has bee...

9.8CVSS5.8AI score
Exploits0References5
Cvelist
Cvelistadded 2024/08/27 8:31 p.m.20 views

CVE-2024-8217 SourceCodester E-Commerce Website registration.php sql injection

A vulnerability has been found in SourceCodester E-Commerce Website 1.0 and classified as critical. This vulnerability affects unknown code of the file /Admin/registration.php. The manipulation of the argument fname leads to sql injection. The attack can be initiated remotely. The exploit has bee...

7.5CVSS0.0008EPSS
Exploits1References5
NVD
NVDadded 2024/08/23 12:15 a.m.15 views

CVE-2024-8089

A vulnerability was found in SourceCodester E-Commerce System 1.0. It has been classified as critical. Affected is an unknown function of the file /ecommerce/admin/products/controller.php. The manipulation of the argument photo leads to unrestricted upload. It is possible to launch the attack...

9.8CVSS0.00107EPSS
Exploits1References5
Vulnrichment
Vulnrichmentadded 2024/08/22 11:31 p.m.15 views

CVE-2024-8089 SourceCodester E-Commerce System controller.php unrestricted upload

A vulnerability was found in SourceCodester E-Commerce System 1.0. It has been classified as critical. Affected is an unknown function of the file /ecommerce/admin/products/controller.php. The manipulation of the argument photo leads to unrestricted upload. It is possible to launch the attack...

6.5CVSS6.9AI score0.00107EPSS
Exploits1References5
CVE
CVEadded 2024/08/22 11:31 p.m.56 views

CVE-2024-8089

CVE-2024-8089 affects SourceCodester E-Commerce System v1.0. The vulnerability resides in the unknown function of the file /ecommerce/admin/products/controller.php, where manipulating the photo parameter leads to an unrestricted upload. This enables a remote attacker to upload arbitrary files, wi...

9.8CVSS6.5AI score0.00107EPSS
Exploits1References5Affected Software1
OSV
OSVadded 2024/08/22 11:15 p.m.0 views

CVE-2024-8087

A vulnerability was found in SourceCodester E-Commerce System 1.0 and classified as critical. This issue affects some unknown processing of the file /ecommerce/popupItem.php. The manipulation of the argument id leads to sql injection. The attack may be initiated remotely. The exploit has been...

9.8CVSS5.8AI score0.00072EPSS
Exploits1References5
Rows per page
Query Builder