VYPR

Online Shopping Portal

by Campcodes

CVEs (13)

  • CVE-2025-5079HigMay 22, 2025
    risk 0.47cvss 7.3epss 0.00

    A flaw has been found in PHPGurukul/Campcodes Online Shopping Portal 1.0. Affected by this vulnerability is an unknown functionality of the file /admin/updateorder.php. Executing manipulation of the argument remark can lead to sql injection. The attack may be performed from…

  • CVE-2025-5078HigMay 22, 2025
    risk 0.47cvss 7.3epss 0.00

    A vulnerability was detected in PHPGurukul/Campcodes Online Shopping Portal 1.0. Affected is an unknown function of the file /admin/subcategory.php. Performing manipulation of the argument Category results in sql injection. The attack is possible to be carried out remotely. The…

  • CVE-2025-5077May 22, 2025
    risk 0.00cvss epss 0.00

    A vulnerability was found in Campcodes Online Shopping Portal 1.0. It has been classified as critical. This affects an unknown part of the file /admin/edit-subcategory.php. The manipulation of the argument Category leads to sql injection. It is possible to initiate the attack…

  • CVE-2025-5059May 21, 2025
    risk 0.00cvss epss 0.00

    A vulnerability classified as critical has been found in Campcodes Online Shopping Portal 1.0. This affects an unknown part of the file /admin/edit-subcategory.php. The manipulation of the argument productimage1/productimage2/productimage3 leads to unrestricted upload. It is…

  • CVE-2025-5057May 21, 2025
    risk 0.00cvss epss 0.00

    A vulnerability was found in Campcodes Online Shopping Portal 1.0. It has been rated as critical. Affected by this issue is some unknown functionality of the file /admin/insert-product.php. The manipulation of the argument Category leads to sql injection. The attack may be…

  • CVE-2025-5056May 21, 2025
    risk 0.00cvss epss 0.00

    A vulnerability was found in Campcodes Online Shopping Portal 1.0. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /admin/edit-products.php. The manipulation of the argument Category leads to sql injection. The attack can…

  • CVE-2025-5032May 21, 2025
    risk 0.00cvss epss 0.00

    A vulnerability classified as critical has been found in Campcodes Online Shopping Portal 1.0. Affected is an unknown function of the file /admin/edit-category.php. The manipulation of the argument Category leads to sql injection. It is possible to launch the attack remotely.…

  • CVE-2025-5006May 20, 2025
    risk 0.00cvss epss 0.00

    A vulnerability was found in Campcodes Online Shopping Portal 1.0. It has been classified as critical. Affected is an unknown function of the file /admin/category.php. The manipulation of the argument Category leads to sql injection. It is possible to launch the attack remotely.…

  • CVE-2025-4930May 19, 2025
    risk 0.00cvss epss 0.00

    A vulnerability classified as critical has been found in Campcodes Online Shopping Portal 1.0. Affected is an unknown function of the file /my-cart.php. The manipulation of the argument billingaddress leads to sql injection. It is possible to launch the attack remotely. The…

  • CVE-2025-4929May 19, 2025
    risk 0.00cvss epss 0.00

    A vulnerability was found in Campcodes Online Shopping Portal 1.0. It has been rated as critical. This issue affects some unknown processing of the file /my-account.php. The manipulation of the argument Name leads to sql injection. The attack may be initiated remotely. The…

  • CVE-2025-4875May 18, 2025
    risk 0.00cvss epss 0.00

    A vulnerability was found in Campcodes Online Shopping Portal 1.0. It has been declared as critical. This vulnerability affects unknown code of the file /forgot-password.php. The manipulation of the argument email leads to sql injection. The attack can be initiated remotely. The…

  • CVE-2025-1578Feb 23, 2025
    risk 0.00cvss epss 0.00

    A vulnerability, which was classified as critical, was found in PHPGurukul/Campcodes Online Shopping Portal 2.1. This affects an unknown part of the file /search-result.php. The manipulation of the argument Product leads to sql injection. It is possible to initiate the attack…

  • CVE-2023-38890Aug 18, 2023
    risk 0.00cvss epss 0.01

    Online Shopping Portal Project 3.1 allows remote attackers to execute arbitrary SQL commands/queries via the login form, leading to unauthorized access and potential data manipulation. This vulnerability arises due to insufficient validation of user-supplied input in the…