VYPR

Online Shopping Portal

by Phpgurukul

CVEs (42)

  • CVE-2024-44663Nov 17, 2025
    risk 0.00cvss epss 0.00

    PHPGurukul Online Shopping Portal 2.0 is vulnerable to SQL Injection via the product parameter in search-result.php.

  • CVE-2025-61096Oct 2, 2025
    risk 0.00cvss epss 0.00

    PHPGurukul Online Shopping Portal Project v2.1 is vulnerable to SQL Injection in /shopping/login.php via the fullname parameter.

  • CVE-2025-52074Sep 12, 2025
    risk 0.00cvss epss 0.00

    PHPGURUKUL Online Shopping Portal 2.1 is vulnerable to Cross Site Scripting (XSS) due to lack of input sanitization in the quantity parameter when adding a product to the cart.

  • CVE-2025-57576Sep 4, 2025
    risk 0.00cvss epss 0.00

    PHPGurukul Online Shopping Portal 2.1 is vulnerable to Cross Site Scripting (XSS) in /admin/updateorder.php.

  • CVE-2025-5367May 31, 2025
    risk 0.00cvss epss 0.00

    A vulnerability was found in PHPGurukul Online Shopping Portal Project 1.0. It has been declared as critical. This vulnerability affects unknown code of the file /category.php. The manipulation of the argument Product leads to sql injection. The attack can be initiated remotely.…

  • CVE-2025-1855Mar 3, 2025
    risk 0.00cvss epss 0.00

    A vulnerability was found in PHPGurukul Online Shopping Portal 2.1. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /product-details.php. The manipulation of the argument quality/price/value/name/summary/review leads to…

  • CVE-2025-1578Feb 23, 2025
    risk 0.00cvss epss 0.00

    A vulnerability, which was classified as critical, was found in PHPGurukul/Campcodes Online Shopping Portal 2.1. This affects an unknown part of the file /search-result.php. The manipulation of the argument Product leads to sql injection. It is possible to initiate the attack…

  • CVE-2025-26156Feb 14, 2025
    risk 0.00cvss epss 0.01

    A SQL Injection vulnerability was found in /shopping/track-orders.php in PHPGurukul Online Shopping Portal v2.1, which allows remote attackers to execute arbitrary code via orderid POST request parameter.

  • CVE-2024-10768Nov 4, 2024
    risk 0.00cvss epss 0.00

    A vulnerability classified as problematic was found in PHPGurukul Online Shopping Portal 2.0. This vulnerability affects unknown code of the file /admin/assets/plugins/DataTables/media/unit_testing/templates/two_tables.php. The manipulation of the argument scripts leads to cross…

  • CVE-2024-10757Nov 4, 2024
    risk 0.00cvss epss 0.00

    A vulnerability, which was classified as problematic, has been found in PHPGurukul Online Shopping Portal 2.0. Affected by this issue is some unknown functionality of the file /admin/assets/plugins/DataTables/media/unit_testing/templates/js_data.php. The manipulation of the…

  • CVE-2024-10756Nov 4, 2024
    risk 0.00cvss epss 0.00

    A vulnerability classified as problematic was found in PHPGurukul Online Shopping Portal 2.0. Affected by this vulnerability is an unknown functionality of the file /admin/assets/plugins/DataTables/media/unit_testing/templates/html_table.php. The manipulation of the argument…

  • CVE-2024-10755Nov 4, 2024
    risk 0.00cvss epss 0.00

    A vulnerability classified as problematic has been found in PHPGurukul Online Shopping Portal 2.0. Affected is an unknown function of the file /admin/assets/plugins/DataTables/media/unit_testing/templates/empty_table.php. The manipulation of the argument scripts leads to cross…

  • CVE-2024-10754Nov 4, 2024
    risk 0.00cvss epss 0.00

    A vulnerability was found in PHPGurukul Online Shopping Portal 2.0. It has been rated as problematic. This issue affects some unknown processing of the file /admin/assets/plugins/DataTables/media/unit_testing/templates/dymanic_table.php. The manipulation of the argument scripts…

  • CVE-2024-10753Nov 4, 2024
    risk 0.00cvss epss 0.00

    A vulnerability was found in PHPGurukul Online Shopping Portal 2.0. It has been declared as problematic. This vulnerability affects unknown code of the file admin/assets/plugins/DataTables/media/unit_testing/templates/dom_data_two_headers.php. The manipulation of the argument…

  • CVE-2024-10747Nov 4, 2024
    risk 0.00cvss epss 0.00

    A vulnerability classified as problematic was found in PHPGurukul Online Shopping Portal 2.0. This vulnerability affects unknown code of the file /admin/assets/plugins/DataTables/media/unit_testing/templates/dom_data_th.php. The manipulation of the argument scripts leads to…

  • CVE-2024-10746Nov 3, 2024
    risk 0.00cvss epss 0.00

    A vulnerability classified as problematic has been found in PHPGurukul Online Shopping Portal 2.0. This affects an unknown part of the file /admin/assets/plugins/DataTables/media/unit_testing/templates/dom_data.php. The manipulation of the argument scripts leads to cross site…

  • CVE-2024-10745Nov 3, 2024
    risk 0.00cvss epss 0.00

    A vulnerability was found in PHPGurukul Online Shopping Portal 2.0. It has been rated as problematic. Affected by this issue is some unknown functionality of the file /admin/assets/plugins/DataTables/media/unit_testing/templates/deferred_table.php. The manipulation of the…

  • CVE-2024-10744Nov 3, 2024
    risk 0.00cvss epss 0.00

    A vulnerability was found in PHPGurukul Online Shopping Portal 2.0. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the file /admin/assets/plugins/DataTables/media/unit_testing/templates/complex_header_2.php. The manipulation of…

  • CVE-2024-10743Nov 3, 2024
    risk 0.00cvss epss 0.00

    A vulnerability was found in PHPGurukul Online Shopping Portal 2.0. It has been classified as problematic. Affected is an unknown function of the file /shopping/admin/assets/plugins/DataTables/examples/examples_support/editable_ajax.php. The manipulation of the argument value…

  • CVE-2024-39090Jul 18, 2024
    risk 0.00cvss epss 0.01

    The PHPGurukul Online Shopping Portal Project version 2.0 contains a vulnerability that allows Cross-Site Request Forgery (CSRF) to lead to Stored Cross-Site Scripting (XSS). An attacker can exploit this vulnerability to execute arbitrary JavaScript code in the context of a…