VYPR

Agri-Trading Online Shopping System

by Itsourcecode

CVEs (2)

  • CVE-2024-50968HigNov 14, 2024
    risk 0.49cvss 7.5epss 0.01

    A business logic vulnerability exists in the Add to Cart function of itsourcecode Agri-Trading Online Shopping System 1.0, which allows remote attackers to manipulate the quant parameter when adding a product to the cart. By setting the quantity value to -0, an attacker can…

  • CVE-2025-7193HigJul 8, 2025
    risk 0.47cvss 7.3epss 0.00

    A vulnerability was found in itsourcecode Agri-Trading Online Shopping System up to 1.0. It has been classified as critical. Affected is an unknown function of the file /admin/suppliercontroller.php. The manipulation of the argument supplier leads to sql injection. It is…