VYPR

E Commerce Website

by Angeljudesuarez

CVEs (26)

  • CVE-2025-11596HigOct 11, 2025
    risk 0.47cvss 7.3epss 0.00

    A vulnerability was determined in code-projects E-Commerce Website 1.0. The affected element is an unknown function of the file /pages/delete_order_details.php. Executing manipulation of the argument order_id can lead to sql injection. The attack can be executed remotely. The…

  • CVE-2025-11558HigOct 9, 2025
    risk 0.47cvss 7.3epss 0.00

    A vulnerability was found in code-projects E-Commerce Website 1.0. Impacted is an unknown function of the file /pages/user_index_search.php. Performing manipulation of the argument Search results in sql injection. The attack is possible to be carried out remotely. The exploit…

  • CVE-2025-11513HigOct 9, 2025
    risk 0.47cvss 7.3epss 0.00

    A vulnerability was determined in code-projects E-Commerce Website 1.0. This affects an unknown part of the file /pages/supplier_update.php. This manipulation of the argument supp_id causes sql injection. The attack is possible to be carried out remotely. The exploit has been…

  • CVE-2025-11420HigOct 8, 2025
    risk 0.47cvss 7.3epss 0.00

    A vulnerability was detected in code-projects E-Commerce Website 1.0. Impacted is an unknown function of the file /pages/edit_order_details.php. The manipulation of the argument order_id results in sql injection. The attack may be launched remotely. The exploit is now public and…

  • CVE-2025-11094HigSep 28, 2025
    risk 0.47cvss 7.3epss 0.00

    A security vulnerability has been detected in code-projects E-Commerce Website 1.0. This affects an unknown part of the file /pages/admin_product_details.php. Such manipulation of the argument prod_id leads to sql injection. The attack may be launched remotely. The exploit has…

  • CVE-2025-11037HigSep 26, 2025
    risk 0.47cvss 7.3epss 0.00

    A security flaw has been discovered in code-projects E-Commerce Website 1.0. This impacts an unknown function of the file /pages/admin_index_search.php. Performing manipulation of the argument Search results in sql injection. The attack may be initiated remotely. The exploit has…

  • CVE-2025-11036HigSep 26, 2025
    risk 0.47cvss 7.3epss 0.00

    A vulnerability was identified in code-projects E-Commerce Website 1.0. This affects an unknown function of the file /pages/admin_account_update.php. Such manipulation of the argument user_id leads to sql injection. The attack can be launched remotely. The exploit is publicly…

  • CVE-2025-10793HigSep 22, 2025
    risk 0.47cvss 7.3epss 0.01

    A vulnerability was detected in code-projects E-Commerce Website 1.0. Affected by this vulnerability is an unknown functionality of the file /pages/admin_account_delete.php. Performing manipulation of the argument user_id results in sql injection. It is possible to initiate the…

  • CVE-2025-11597MedOct 11, 2025
    risk 0.41cvss 6.3epss 0.00

    A vulnerability was identified in code-projects E-Commerce Website 1.0. The impacted element is an unknown function of the file /pages/product_add_qty.php. The manipulation of the argument prod_id leads to sql injection. The attack is possible to be carried out remotely. The…

  • CVE-2025-11511MedOct 8, 2025
    risk 0.41cvss 6.3epss 0.00

    A flaw has been found in code-projects E-Commerce Website 1.0. Affected is an unknown function of the file /pages/supplier_add.php. Executing manipulation of the argument supp_email can lead to sql injection. The attack may be launched remotely. The exploit has been published…

  • CVE-2025-11509MedOct 8, 2025
    risk 0.41cvss 6.3epss 0.00

    A vulnerability was detected in code-projects E-Commerce Website 1.0. This impacts an unknown function of the file /pages/product_add.php. Performing manipulation of the argument prod_name results in sql injection. The attack may be initiated remotely. The exploit is now public…

  • CVE-2025-10616MedSep 17, 2025
    risk 0.41cvss 6.3epss 0.00

    A security flaw has been discovered in itsourcecode E-Commerce Website 1.0. Affected is an unknown function of the file /admin/users.php. The manipulation results in unrestricted upload. The attack can be launched remotely. The exploit has been released to the public and may be…

  • CVE-2025-10615MedSep 17, 2025
    risk 0.41cvss 6.3epss 0.00

    A vulnerability was identified in itsourcecode E-Commerce Website 1.0. This impacts an unknown function of the file /admin/products.php. The manipulation leads to unrestricted upload. The attack can be initiated remotely. The exploit is publicly available and might be used.

  • CVE-2025-12335MedOct 28, 2025
    risk 0.28cvss 4.3epss 0.00

    A vulnerability was determined in code-projects E-Commerce Website 1.0. Affected by this vulnerability is an unknown functionality of the file /pages/supplier_update.php. This manipulation of the argument supp_name/supp_address causes cross site scripting. The attack can be…

  • CVE-2025-12334MedOct 27, 2025
    risk 0.28cvss 4.3epss 0.00

    A vulnerability was found in code-projects E-Commerce Website 1.0. Affected is an unknown function of the file /pages/product_add.php. The manipulation of the argument prod_name/prod_desc/prod_cost results in cross site scripting. It is possible to launch the attack remotely.…

  • CVE-2025-12333MedOct 27, 2025
    risk 0.28cvss 4.3epss 0.00

    A vulnerability has been found in code-projects E-Commerce Website 1.0. This impacts an unknown function of the file /pages/supplier_add.php. The manipulation of the argument supp_name/supp_address leads to cross site scripting. It is possible to initiate the attack remotely.…

  • CVE-2024-12884Dec 21, 2024
    risk 0.00cvss epss 0.01

    A vulnerability was found in Codezips E-Commerce Website 1.0. It has been rated as critical. Affected by this issue is some unknown functionality of the file /login.php. The manipulation of the argument email leads to sql injection. The attack may be launched remotely. The…

  • CVE-2024-8217Aug 27, 2024
    risk 0.00cvss epss 0.01

    A vulnerability has been found in SourceCodester E-Commerce Website 1.0 and classified as critical. This vulnerability affects unknown code of the file /Admin/registration.php. The manipulation of the argument fname leads to sql injection. The attack can be initiated remotely.…

  • CVE-2024-8139Aug 25, 2024
    risk 0.00cvss epss 0.01

    A vulnerability has been found in itsourcecode E-Commerce Website 1.0 and classified as critical. Affected by this vulnerability is an unknown functionality of the file search_list.php. The manipulation of the argument user leads to sql injection. The attack can be launched…

  • CVE-2023-7108Dec 26, 2023
    risk 0.00cvss epss 0.01

    A vulnerability classified as problematic has been found in code-projects E-Commerce Website 1.0. This affects an unknown part of the file user_signup.php. The manipulation of the argument firstname with the input <video/src=x onerror=alert(document.domain)> leads to cross site…

Page 1 of 2