Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
codeigniter codeigniter vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2023-48708
CodeIgniter Shield is an authentication and authorization provider for CodeIgniter 4. In affected versions successful login attempts are recorded with the raw tokens stored in the log table. If a malicious person somehow views the data in the log table they can obtain a raw token...
Codeigniter Shield 1.0.0
NA
CVE-2023-27580
CodeIgniter Shield provides authentication and authorization for the CodeIgniter 4 PHP framework. An improper implementation was found in the password storage process. All hashed passwords stored in Shield v1.0.0-beta.3 or earlier are easier to crack than expected due to the vuln...
Codeigniter Shield 1.0.0
355
VMScore
CVE-2018-18416
LANGO Codeigniter Multilingual Script 1.0 has XSS in the input and upload sections, as demonstrated by the site_name parameter to the admin/settings/update URI.
Pokkho Lango 1.0
1 EDB exploit
NA
CVE-2011-4025
ExpressionEngine version 2.2.2 and CodeIgniter version 2.0.3 suffer from filter bypass and cross site scripting vulnerabilities.
435
VMScore
CVE-2012-4236
Cross-site scripting (XSS) vulnerability in the refresh_page function in application/modules/_main/views/_top.php in Total Shop UK eCommerce Open Source prior to 2.1.2_p1 allows remote malicious users to inject arbitrary web script or HTML via the PATH_INFO.
Totalshopuk Ecommerce
Totalshopuk Ecommerce 2.1.1
Totalshopuk Ecommerce 2.1.0
Totalshopuk Ecommerce 2.0.3
Totalshopuk Ecommerce 2.0.2
Totalshopuk Ecommerce 1.5.2
Totalshopuk Ecommerce 1.7
Totalshopuk Ecommerce 1.7.0
Totalshopuk Ecommerce 1.6.3
Totalshopuk Ecommerce 1.6.2
Totalshopuk Ecommerce 1.3.1
Totalshopuk Ecommerce 1.3
Totalshopuk Ecommerce 1.2
Totalshopuk Ecommerce 1.1
Totalshopuk Ecommerce 1.0
Totalshopuk Ecommerce 1.5.1
Totalshopuk Ecommerce 1.5.0.1
Totalshopuk Ecommerce 1.5.0
Totalshopuk Ecommerce 2.0.0
Totalshopuk Ecommerce 1.7.1
Totalshopuk Ecommerce 1.6.1
Totalshopuk Ecommerce 1.5.4
1 EDB exploit
NA
CVE-2022-41446
An access control issue in /Admin/dashboard.php of Record Management System using CodeIgniter v1.0 allows malicious users to access and modify user data.
Record Management System Project Record Management System -
1 Github repository
NA
CVE-2024-31820
An issue in Ecommerce-CodeIgniter-Bootstrap commit v. d22b54e8915f167a135046ceb857caaf8479c4da allows a remote malicious user to execute arbitrary code via the getLangFolderForEdit method of the Languages.php component.
NA
CVE-2024-31822
An issue in Ecommerce-CodeIgniter-Bootstrap commit v. d22b54e8915f167a135046ceb857caaf8479c4da allows a remote malicious user to execute arbitrary code via the saveLanguageFiles method of the Languages.php component.
NA
CVE-2024-31823
An issue in Ecommerce-CodeIgniter-Bootstrap commit v. d22b54e8915f167a135046ceb857caaf8479c4da allows a remote malicious user to execute arbitrary code via the removeSecondaryImage method of the Publish.php component.
NA
CVE-2024-31821
SQL Injection vulnerability in Ecommerce-CodeIgniter-Bootstrap commit v. d22b54e8915f167a135046ceb857caaf8479c4da allows a remote malicious user to execute arbitrary code via the manageQuantitiesAndProcurement method of the Orders_model.php component.
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
authentication bypass
CVE-2024-30051
remote
CVE-2024-27954
CVE-2023-51483
CVE-2023-47782
SSRF
CVE-2024-24715
CVE-2023-52424
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »