22 matches found
E-Commerce Website supplier_update.php file cross-site scripting vulnerability
E-Commerce Website is an e-commerce website. E-Commerce Website suffers from a cross-site scripting vulnerability that stems from the lack of effective filtering and escaping of user-supplied data in the parameters suppname and suppaddress in the file /pages/supplierupdate.php, which can be...
CVE-2025-12335
A vulnerability was determined in code-projects E-Commerce Website 1.0. Affected by this vulnerability is an unknown functionality of the file /pages/supplierupdate.php. This manipulation of the argument suppname/suppaddress causes cross site scripting. The attack can be initiated remotely. The...
EUVD-2025-36368
A vulnerability was determined in code-projects E-Commerce Website 1.0. Affected by this vulnerability is an unknown functionality of the file /pages/supplierupdate.php. This manipulation of the argument suppname/suppaddress causes cross site scripting. The attack can be initiated remotely. The...
CVE-2025-12335
A vulnerability was determined in code-projects E-Commerce Website 1.0. Affected by this vulnerability is an unknown functionality of the file /pages/supplierupdate.php. This manipulation of the argument suppname/suppaddress causes cross site scripting. The attack can be initiated remotely. The...
CVE-2025-12335
A vulnerability was determined in code-projects E-Commerce Website 1.0. Affected by this vulnerability is an unknown functionality of the file /pages/supplierupdate.php. This manipulation of the argument suppname/suppaddress causes cross site scripting. The attack can be initiated remotely. The...
Code-Projects E-Commerce Website 代码注入漏洞
E-Commerce Website is an e-commerce website. E-Commerce Website suffers from a cross-site scripting vulnerability that stems from the lack of effective filtering and escaping of user-supplied data in the parameters suppname and suppaddress in the file /pages/supplierupdate.php, which can be...
CVE-2025-12335
CVE-2025-12335 affects code-projects E-Commerce Website 1.0. The vulnerability resides in /pages/supplier_update.php where unsafely handling the supp_name and supp_address parameters enables cross-site scripting. The issue can be triggered remotely, and the exploit has been publicly disclosed. Mu...
CVE-2025-12335 code-projects E-Commerce Website supplier_update.php cross site scripting
A vulnerability was determined in code-projects E-Commerce Website 1.0. Affected by this vulnerability is an unknown functionality of the file /pages/supplierupdate.php. This manipulation of the argument suppname/suppaddress causes cross site scripting. The attack can be initiated remotely. The...
CVE-2025-12335 code-projects E-Commerce Website supplier_update.php cross site scripting
A vulnerability was determined in code-projects E-Commerce Website 1.0. Affected by this vulnerability is an unknown functionality of the file /pages/supplierupdate.php. This manipulation of the argument suppname/suppaddress causes cross site scripting. The attack can be initiated remotely. The...
PT-2025-44065
Name of the Vulnerable Software and Affected Versions code-projects E-Commerce Website version 1.0 Description A cross site scripting issue exists in code-projects E-Commerce Website version 1.0. The issue is related to the manipulation of the supp name/supp address argument within the file...
E-Commerce Website /pages/supplier_update.php SQL Injection Vulnerability
E-Commerce Website is an e-commerce website. E-Commerce Website suffers from a SQL injection vulnerability that originates from improper filtering of SQL statements submitted by the parameter suppid in the /pages/supplierupdate.php file, which can be exploited by an attacker to gain unauthorized...
CVE-2025-11513
A vulnerability was determined in code-projects E-Commerce Website 1.0. This affects an unknown part of the file /pages/supplierupdate.php. This manipulation of the argument suppid causes sql injection. The attack is possible to be carried out remotely. The exploit has been publicly disclosed and...
CVE-2025-11513
A vulnerability was determined in code-projects E-Commerce Website 1.0. This affects an unknown part of the file /pages/supplierupdate.php. This manipulation of the argument suppid causes sql injection. The attack is possible to be carried out remotely. The exploit has been publicly disclosed and...
CVE-2025-11513
A vulnerability was determined in code-projects E-Commerce Website 1.0. This affects an unknown part of the file /pages/supplierupdate.php. This manipulation of the argument suppid causes sql injection. The attack is possible to be carried out remotely. The exploit has been publicly disclosed and...
Code-Projects E-Commerce Website SQL注入漏洞
E-Commerce Website is an e-commerce website. E-Commerce Website suffers from a SQL injection vulnerability that originates from improper filtering of SQL statements submitted by the parameter suppid in the /pages/supplierupdate.php file, which can be exploited by an attacker to gain unauthorized...
CVE-2025-11513
Summary: CVE-2025-11513 affects the code-projects E-Commerce Website 1.0, specifically the /pages/supplier_update.php file. The vulnerability arises from improper handling of the supp_id parameter, enabling SQL injection. Several connected sources (CNVD, RH, CNNVD, CVE records) describe remote ex...
CVE-2025-11513 code-projects E-Commerce Website supplier_update.php sql injection
A vulnerability was determined in code-projects E-Commerce Website 1.0. This affects an unknown part of the file /pages/supplierupdate.php. This manipulation of the argument suppid causes sql injection. The attack is possible to be carried out remotely. The exploit has been publicly disclosed and...
EUVD-2025-33274
A vulnerability was determined in code-projects E-Commerce Website 1.0. This affects an unknown part of the file /pages/supplierupdate.php. This manipulation of the argument suppid causes sql injection. The attack is possible to be carried out remotely. The exploit has been publicly disclosed and...
CVE-2025-11513 code-projects E-Commerce Website supplier_update.php sql injection
A vulnerability was determined in code-projects E-Commerce Website 1.0. This affects an unknown part of the file /pages/supplierupdate.php. This manipulation of the argument suppid causes sql injection. The attack is possible to be carried out remotely. The exploit has been publicly disclosed and...
PT-2025-41321
Name of the Vulnerable Software and Affected Versions code-projects E-Commerce Website version 1.0 Description A flaw exists in code-projects E-Commerce Website 1.0, specifically within the /pages/supplier update.php file. Manipulation of the supp id argument can lead to SQL injection. This issue...