VYPR

Online Shop Project

by Oretnom23

CVEs (3)

  • CVE-2025-13451HigNov 20, 2025
    risk 0.47cvss 7.3epss 0.00

    A vulnerability was identified in SourceCodester Online Shop Project 1.0. The affected element is an unknown function of the file /action.php. Such manipulation of the argument Search leads to sql injection. It is possible to launch the attack remotely. The exploit is publicly…

  • CVE-2025-13449HigNov 20, 2025
    risk 0.47cvss 7.3epss 0.00

    A vulnerability was found in code-projects Online Shop Project 1.0. This issue affects some unknown processing of the file /login.php. The manipulation of the argument Password results in sql injection. The attack may be performed from remote. The exploit has been made public…

  • CVE-2025-13450LowNov 20, 2025
    risk 0.23cvss 3.5epss 0.00

    A vulnerability was determined in SourceCodester Online Shop Project 1.0. Impacted is an unknown function of the file /shop/register.php. This manipulation of the argument f_name causes cross site scripting. It is possible to initiate the attack remotely. The exploit has been…