CVE-2026-5640 PHPGurukul Online Shopping Portal Project Parameter update-image2.php sql injection

A vulnerability has been found in PHPGurukul Online Shopping Portal Project 2.1. The affected element is an unknown function of the file /admin/update-image2.php of the component Parameter Handler. The manipulation of the argument filename leads to sql injection. The attack is possible to be...

Online-Book-Store-Website Code Issue Vulnerability

Online-Book-Store-Website is an online bookstore website. A code issue vulnerability exists in version 1.0 of Online-Book-Store-Website that stems from an unrestricted upload in the updateimage parameter of the /productupdate.php?update=1 file...