Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
merchandise online store project merchandise online store 1.0 vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2022-42237
A SQL Injection issue in Merchandise Online Store v.1.0 allows an malicious user to log in to the admin account.
Merchandise Online Store Project Merchandise Online Store 1.0
NA
CVE-2022-42238
A Vertical Privilege Escalation issue in Merchandise Online Store v.1.0 allows an malicious user to get access to the admin dashboard.
Merchandise Online Store Project Merchandise Online Store 1.0
1 Github repository
578
VMScore
CVE-2022-30399
Merchandise Online Store v1.0 is vulnerable to SQL Injection via /vloggers_merch/admin/?page=maintenance/manage_category&id=.
Merchandise Online Store Project Merchandise Online Store 1.0
668
VMScore
CVE-2022-30385
Merchandise Online Store v1.0 is vulnerable to SQL Injection via /vloggers_merch/classes/Master.php?f=delete_order.
Merchandise Online Store Project Merchandise Online Store 1.0
668
VMScore
CVE-2022-30387
Merchandise Online Store v1.0 is vulnerable to SQL Injection via /vloggers_merch/classes/Master.php?f=pay_order.
Merchandise Online Store Project Merchandise Online Store 1.0
668
VMScore
CVE-2022-30392
Merchandise Online Store v1.0 is vulnerable to SQL Injection via /vloggers_merch/classes/Master.php?f=delete_sub_category.
Merchandise Online Store Project Merchandise Online Store 1.0
578
VMScore
CVE-2022-30393
Merchandise Online Store v1.0 is vulnerable to SQL Injection via /vloggers_merch/admin/?page=product/manage_product&id=.
Merchandise Online Store Project Merchandise Online Store 1.0
578
VMScore
CVE-2022-30398
Merchandise Online Store v1.0 is vulnerable to SQL Injection via /vloggers_merch/admin/?page=orders/view_order&id=.
Merchandise Online Store Project Merchandise Online Store 1.0
578
VMScore
CVE-2022-30400
Merchandise Online Store v1.0 is vulnerable to SQL Injection via /vloggers_merch/admin/orders/view_order.php?view=user&id=.
Merchandise Online Store Project Merchandise Online Store 1.0
578
VMScore
CVE-2022-30402
Merchandise Online Store v1.0 is vulnerable to SQL Injection via /vloggers_merch/admin/?page=maintenance/manage_sub_category&id=.
Merchandise Online Store Project Merchandise Online Store 1.0
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-4956
validation
CVE-2024-35221
remote attackers
CVE-2023-30309
CVE-2024-36112
CVE-2024-23109
CVE-2023-43850
stored XSS
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »