E-commerce System Security Vulnerabilities and Issues — E-commerce System CVE List

Lucene search

E-commerce System ProjectE-commerce System

7 matches found

CVE•added 2024/08/23 12:15 a.m.•51 views

CVE-2024-8089

A vulnerability was found in SourceCodester E-Commerce System 1.0. It has been classified as critical. Affected is an unknown function of the file /ecommerce/admin/products/controller.php. The manipulation of the argument photo leads to unrestricted upload. It is possible to launch the attack remot...

9.8CVSS6.5AI score0.00127EPSS

CVE•added 2023/03/20 10:15 a.m.•50 views

CVE-2023-1506

A vulnerability, which was classified as critical, was found in SourceCodester E-Commerce System 1.0. Affected is an unknown function of the file login.php. The manipulation of the argument U_USERNAME leads to sql injection. It is possible to launch the attack remotely. The complexity of an attack ...

8.1CVSS7AI score0.0004EPSS

CVE•added 2023/03/22 11:15 a.m.•50 views

CVE-2023-1557

A vulnerability was found in SourceCodester E-Commerce System 1.0. It has been rated as critical. Affected by this issue is some unknown functionality of the file /ecommerce/admin/user/controller.php?action=edit of the component Username Handler. The manipulation of the argument USERID leads to imp...

9.8CVSS7.9AI score0.00046EPSS

CVE•added 2023/03/20 9:15 a.m.•48 views

CVE-2023-1505

A vulnerability, which was classified as critical, has been found in SourceCodester E-Commerce System 1.0. This issue affects some unknown processing of the file /ecommerce/admin/settings/setDiscount.php. The manipulation of the argument id with the input 201737 AND (SELECT 8973 FROM (SELECT(SLEEP(...

8.1CVSS6.8AI score0.00045EPSS

CVE•added 2024/08/22 11:15 p.m.•47 views

CVE-2024-8086

A vulnerability has been found in SourceCodester E-Commerce System 1.0 and classified as critical. This vulnerability affects unknown code of the file /ecommerce/admin/login.php of the component Admin Login. The manipulation of the argument user_email leads to sql injection. The attack can be initi...

9.8CVSS7.5AI score0.0005EPSS

CVE•added 2023/03/20 10:15 a.m.•44 views

CVE-2023-1507

A vulnerability has been found in SourceCodester E-Commerce System 1.0 and classified as problematic. Affected by this vulnerability is an unknown functionality of the file /ecommerce/admin/category/controller.php of the component Category Name Handler. The manipulation of the argument CATEGORY lea...

6.1CVSS4.8AI score0.00059EPSS

CVE•added 2023/03/22 2:15 p.m.•38 views

CVE-2023-1569

A vulnerability classified as problematic was found in SourceCodester E-Commerce System 1.0. Affected by this vulnerability is an unknown functionality of the file admin/user/controller.php?action=edit. The manipulation of the argument U_NAME with the input leads to cross site scripting. The attac...

5.4CVSS4.4AI score0.00059EPSS