Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
CodeastroEcommerce Website

2 matches found

CVE
CVEadded 2024/03/09 10:31 p.m.66 views

CVE-2024-2351

CVE-2024-2351 affects CodeAstro Ecommerce Site 1.0. The flaw is in the action.php of the Search component, where manipulating the arguments cat_id, brand_id, or keyword leads to SQL injection. It can be exploited remotely, and the exploit has been disclosed publicly. Public sources identify the v...

9.8CVSS6.9AI score0.00684EPSS
Web
CVE
CVEadded 2025/08/20 5:32 p.m.17 views

CVE-2025-9237

CodeAstro Ecommerce Website 1.0 is affected by a cross-site scripting (XSS) issue in the Edit Your Account Page, specifically via manipulation of the Username parameter in /customer/my_account.php?edit_account. The vulnerability originates from an unknown function in that page; exploitation can b...

5.4CVSS3.8AI score0.00264EPSS
Web