Medium severity6.3NVD Advisory· Published Apr 6, 2026· Updated Apr 27, 2026
CVE-2026-5606
CVE-2026-5606
Description
A security flaw has been discovered in PHPGurukul Online Shopping Portal Project 2.1. The affected element is an unknown function of the file /order-details.php of the component Parameter Handler. The manipulation of the argument orderid results in sql injection. It is possible to launch the attack remotely.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
1- Range: = 2.1
Patches
Vulnerability mechanics
References
5News mentions
0No linked articles in our index yet.