Vulnerabilities > Online Shopping System Advanced Project

DATE CVE VULNERABILITY TITLE RISK
2023-06-20 CVE-2023-3337 Improper Authentication vulnerability in Online Shopping System Advanced Project Online Shopping System Advanced 1.0
A vulnerability was found in PuneethReddyHC Online Shopping System Advanced 1.0.
network
low complexity
online-shopping-system-advanced-project CWE-287
critical
 9.8
9.8
2023-06-18 CVE-2023-3311 Cross-site Scripting vulnerability in Online-Shopping-System-Advanced Project Online-Shopping-System-Advanced 1.0
A vulnerability, which was classified as problematic, was found in PuneethReddyHC online-shopping-system-advanced 1.0. 		5.4
5.4
2022-11-29 CVE-2022-42109 SQL Injection vulnerability in Online-Shopping-System-Advanced Project Online-Shopping-System-Advanced 1.0
Online-shopping-system-advanced 1.0 was discovered to contain a SQL injection vulnerability via the p parameter at /shopping/product.php.
network
low complexity
online-shopping-system-advanced-project CWE-89
critical
 9.8
9.8
2021-10-01 CVE-2021-41648 SQL Injection vulnerability in Online-Shopping-System-Advanced Project Online-Shopping-System-Advanced
An un-authenticated SQL Injection exists in PuneethReddyHC online-shopping-system-advanced through the /action.php prId parameter. 		7.5
7.5
2021-10-01 CVE-2021-41649 SQL Injection vulnerability in Online-Shopping-System-Advanced Project Online-Shopping-System-Advanced
An un-authenticated SQL Injection exists in PuneethReddyHC online-shopping-system-advanced through the /homeaction.php cat_id parameter.
network
low complexity
online-shopping-system-advanced-project CWE-89
critical
 9.8
9.8