Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
codeigniter codeigniter vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2023-48708
CodeIgniter Shield is an authentication and authorization provider for CodeIgniter 4. In affected versions successful login attempts are recorded with the raw tokens stored in the log table. If a malicious person somehow views the data in the log table they can obtain a raw token...
Codeigniter Shield 1.0.0
NA
CVE-2023-27580
CodeIgniter Shield provides authentication and authorization for the CodeIgniter 4 PHP framework. An improper implementation was found in the password storage process. All hashed passwords stored in Shield v1.0.0-beta.3 or earlier are easier to crack than expected due to the vuln...
Codeigniter Shield 1.0.0
3.5
CVSSv2
CVE-2018-18416
LANGO Codeigniter Multilingual Script 1.0 has XSS in the input and upload sections, as demonstrated by the site_name parameter to the admin/settings/update URI.
Pokkho Lango 1.0
1 EDB exploit
NA
CVE-2011-4025
ExpressionEngine version 2.2.2 and CodeIgniter version 2.0.3 suffer from filter bypass and cross site scripting vulnerabilities.
4.3
CVSSv2
CVE-2012-4236
Cross-site scripting (XSS) vulnerability in the refresh_page function in application/modules/_main/views/_top.php in Total Shop UK eCommerce Open Source prior to 2.1.2_p1 allows remote malicious users to inject arbitrary web script or HTML via the PATH_INFO.
Totalshopuk Ecommerce
Totalshopuk Ecommerce 2.1.1
Totalshopuk Ecommerce 2.1.0
Totalshopuk Ecommerce 2.0.3
Totalshopuk Ecommerce 2.0.2
Totalshopuk Ecommerce 1.5.2
Totalshopuk Ecommerce 1.7
Totalshopuk Ecommerce 1.7.0
Totalshopuk Ecommerce 1.6.3
Totalshopuk Ecommerce 1.6.2
Totalshopuk Ecommerce 1.3.1
Totalshopuk Ecommerce 1.3
Totalshopuk Ecommerce 1.2
Totalshopuk Ecommerce 1.1
Totalshopuk Ecommerce 1.0
Totalshopuk Ecommerce 1.5.1
Totalshopuk Ecommerce 1.5.0.1
Totalshopuk Ecommerce 1.5.0
Totalshopuk Ecommerce 2.0.0
Totalshopuk Ecommerce 1.7.1
Totalshopuk Ecommerce 1.6.1
Totalshopuk Ecommerce 1.5.4
1 EDB exploit
NA
CVE-2022-41446
An access control issue in /Admin/dashboard.php of Record Management System using CodeIgniter v1.0 allows malicious users to access and modify user data.
Record Management System Project Record Management System -
1 Github repository
NA
CVE-2024-31820
An issue in Ecommerce-CodeIgniter-Bootstrap commit v. d22b54e8915f167a135046ceb857caaf8479c4da allows a remote malicious user to execute arbitrary code via the getLangFolderForEdit method of the Languages.php component.
NA
CVE-2024-31822
An issue in Ecommerce-CodeIgniter-Bootstrap commit v. d22b54e8915f167a135046ceb857caaf8479c4da allows a remote malicious user to execute arbitrary code via the saveLanguageFiles method of the Languages.php component.
NA
CVE-2024-31823
An issue in Ecommerce-CodeIgniter-Bootstrap commit v. d22b54e8915f167a135046ceb857caaf8479c4da allows a remote malicious user to execute arbitrary code via the removeSecondaryImage method of the Publish.php component.
NA
CVE-2024-31821
SQL Injection vulnerability in Ecommerce-CodeIgniter-Bootstrap commit v. d22b54e8915f167a135046ceb857caaf8479c4da allows a remote malicious user to execute arbitrary code via the manageQuantitiesAndProcurement method of the Orders_model.php component.
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-4671
unauthorized
CVE-2024-4776
CVE-2024-3407
CVE-2024-26026
CVE-2024-32888
wireless
CVE-2024-4656
template injection
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »