Lucene search
K

8 matches found

CNVD
CNVD
added 2025/10/31 12:0 a.m.4 views

E-Commerce Website supplier_update.php file cross-site scripting vulnerability

E-Commerce Website is an e-commerce website. E-Commerce Website suffers from a cross-site scripting vulnerability that stems from the lack of effective filtering and escaping of user-supplied data in the parameters suppname and suppaddress in the file /pages/supplierupdate.php, which can be...

6.1CVSS6.3AI score0.00356EPSS
Exploits1References1
EUVD
EUVD
added 2025/10/28 12:31 a.m.6 views

EUVD-2025-36368

A vulnerability was determined in code-projects E-Commerce Website 1.0. Affected by this vulnerability is an unknown functionality of the file /pages/supplierupdate.php. This manipulation of the argument suppname/suppaddress causes cross site scripting. The attack can be initiated remotely. The...

5.3CVSS5.3AI score0.00356EPSS
Exploits1References6
OSV
OSV
added 2025/10/28 12:15 a.m.5 views

CVE-2025-12335

A vulnerability was determined in code-projects E-Commerce Website 1.0. Affected by this vulnerability is an unknown functionality of the file /pages/supplierupdate.php. This manipulation of the argument suppname/suppaddress causes cross site scripting. The attack can be initiated remotely. The...

6.1CVSS4.3AI score0.00356EPSS
Exploits1References5
CNNVD
CNNVD
added 2025/10/28 12:0 a.m.10 views

Code-Projects E-Commerce Website 代码注入漏洞

E-Commerce Website is an e-commerce website. E-Commerce Website suffers from a cross-site scripting vulnerability that stems from the lack of effective filtering and escaping of user-supplied data in the parameters suppname and suppaddress in the file /pages/supplierupdate.php, which can be...

6.1CVSS6.2AI score0.00356EPSS
Exploits1References6
CNVD
CNVD
added 2025/10/13 12:0 a.m.5 views

E-Commerce Website /pages/supplier_update.php SQL Injection Vulnerability

E-Commerce Website is an e-commerce website. E-Commerce Website suffers from a SQL injection vulnerability that originates from improper filtering of SQL statements submitted by the parameter suppid in the /pages/supplierupdate.php file, which can be exploited by an attacker to gain unauthorized...

9.8CVSS8.1AI score0.00441EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/10/10 1:31 a.m.6 views

CVE-2025-11513

A vulnerability was determined in code-projects E-Commerce Website 1.0. This affects an unknown part of the file /pages/supplierupdate.php. This manipulation of the argument suppid causes sql injection. The attack is possible to be carried out remotely. The exploit has been publicly disclosed and...

9.8CVSS7AI score0.00441EPSS
Exploits1References1
EUVD
EUVD
added 2025/10/08 11:32 p.m.7 views

EUVD-2025-33274

A vulnerability was determined in code-projects E-Commerce Website 1.0. This affects an unknown part of the file /pages/supplierupdate.php. This manipulation of the argument suppid causes sql injection. The attack is possible to be carried out remotely. The exploit has been publicly disclosed and...

7.5CVSS6.5AI score0.00441EPSS
Exploits1References7
Positive Technologies
Positive Technologies
added 2025/10/08 12:0 a.m.8 views

PT-2025-41321

Name of the Vulnerable Software and Affected Versions code-projects E-Commerce Website version 1.0 Description A flaw exists in code-projects E-Commerce Website 1.0, specifically within the /pages/supplier update.php file. Manipulation of the supp id argument can lead to SQL injection. This issue...

9.8CVSS6.8AI score0.00441EPSS
Exploits1References12
Rows per page
Query Builder