Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
ecommerce-website project ecommerce-website 1.0 vulnerabilities and exploits
(subscribe to this query)
9.8
CVSSv3
CVE-2022-27357
Ecommerce-Website v1 exists to contain an arbitrary file upload vulnerability via /customer_register.php. This vulnerability allows malicious users to execute arbitrary code via a crafted PHP file.
Ecommerce-website Project Ecommerce-website 1.0
6.1
CVSSv3
CVE-2022-45990
A cross-site scripting (XSS) vulnerability in the component /signup_script.php of Ecommerce-Website v1.0 allows malicious users to execute arbitrary web scripts or HTML via a crafted payload injected into the eMail parameter.
Ecommerce-website Project Ecommerce-website 1.0
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-20065
open redirect
CVE-2024-1086
path traversal
CVE-2024-29825
XXE
CVE-2024-29822
CVE-2024-20696
CVE-2024-3564
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started