Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
CodezipsOnline Shopping Portal

3 matches found

CVE
CVEadded 2024/09/20 4:0 p.m.73 views

CVE-2024-9038

CVE-2024-9038 affects Codezips Online Shopping Portal 1.0, specifically the insert-product.php functionality. The vulnerability arises from manipulating the productimage1/productimage2/productimage3 parameters, enabling unrestricted file upload. This remote attack has had its exploit disclosed pu...

9.8CVSS5.2AI score0.00185EPSS
Web
CVE
CVEadded 2024/10/03 2:31 p.m.46 views

CVE-2024-9460

CVE-2024-9460 affects Codezips Online Shopping Portal 1.0. an SQL injection via the username argument in an unknown function of index.php is reported, with remote exploitation and public disclosure. Multiple sources confirm the risk is due to improper handling of the username parameter leading to...

9.8CVSS7.7AI score0.00054EPSS
CVE
CVEadded 2024/10/10 4:0 p.m.46 views

CVE-2024-9794

The CVE-2024-9794 entry concerns Codezips Online Shopping Portal 1.0, where the vulnerability resides in /update-image1.php. The issue arises when manipulating the productimage1 argument, enabling unrestricted upload. The affected component is the file handling logic in update-image1.php, with re...

9.8CVSS6.8AI score0.00158EPSS