Ecommerce Codeigniter Bootstrap

ecommerce-codeigniter-bootstrap

Vendor: Ecommerce Codeigniter Bootstrap Project • 17 CVEs

CVEs (17)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2024-6526 1Ecommerce Codeigniter Bootstrap Project 1Ecommerce Codeigniter Bootstrap Jun 17, 2026 Jul 5, 2024 5.3 MEDIUM· v4 6.1 MEDIUM· v3 4.0 MEDIUM· v2 A vulnerability classified as problematic has been found in CodeIgniter Ecommerce-CodeIgniter-Bootstrap up to 1998845073cf433bc6c250b0354461fbd84d0e03. This affects an unknown part. The manipulation of the argument searc...Show more A vulnerability classified as problematic has been found in CodeIgniter Ecommerce-CodeIgniter-Bootstrap up to 1998845073cf433bc6c250b0354461fbd84d0e03. This affects an unknown part. The manipulation of the argument search_title/catName/sub/name/categorie leads to cross site scripting. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used. The identifier of the patch is 1b3da45308bb6c3f55247d0e99620b600bd85277. It is recommended to apply a patch to fix this issue. The identifier VDB-270369 was assigned to this vulnerability.Show less
CVE-2024-31823 1Ecommerce Codeigniter Bootstrap Project 1Ecommerce Codeigniter Bootstrap Jun 17, 2026 Apr 29, 2024 N/A· v4 8.8 HIGH· v3 N/A· v2 An issue in Ecommerce-CodeIgniter-Bootstrap commit v. d22b54e8915f167a135046ceb857caaf8479c4da allows a remote attacker to execute arbitrary code via the removeSecondaryImage method of the Publish.php component.
CVE-2024-31822 1Ecommerce Codeigniter Bootstrap Project 1Ecommerce Codeigniter Bootstrap Jun 17, 2026 Apr 29, 2024 N/A· v4 9.8 CRITICAL· v3 N/A· v2 An issue in Ecommerce-CodeIgniter-Bootstrap commit v. d22b54e8915f167a135046ceb857caaf8479c4da allows a remote attacker to execute arbitrary code via the saveLanguageFiles method of the Languages.php component.
CVE-2024-31821 1Ecommerce Codeigniter Bootstrap Project 1Ecommerce Codeigniter Bootstrap Jun 17, 2026 Apr 29, 2024 N/A· v4 8.0 HIGH· v3 N/A· v2 SQL Injection vulnerability in Ecommerce-CodeIgniter-Bootstrap commit v. d22b54e8915f167a135046ceb857caaf8479c4da allows a remote attacker to execute arbitrary code via the manageQuantitiesAndProcurement method of the Or...Show more SQL Injection vulnerability in Ecommerce-CodeIgniter-Bootstrap commit v. d22b54e8915f167a135046ceb857caaf8479c4da allows a remote attacker to execute arbitrary code via the manageQuantitiesAndProcurement method of the Orders_model.php component.Show less
CVE-2024-31820 1Ecommerce Codeigniter Bootstrap Project 1Ecommerce Codeigniter Bootstrap Jun 17, 2026 Apr 29, 2024 N/A· v4 9.8 CRITICAL· v3 N/A· v2 An issue in Ecommerce-CodeIgniter-Bootstrap commit v. d22b54e8915f167a135046ceb857caaf8479c4da allows a remote attacker to execute arbitrary code via the getLangFolderForEdit method of the Languages.php component.
CVE-2023-23010 1Ecommerce Codeigniter Bootstrap Project 1Ecommerce Codeigniter Bootstrap Jun 17, 2026 Jan 20, 2023 N/A· v4 6.1 MEDIUM· v3 N/A· v2 Cross Site Scripting (XSS) vulnerability in Ecommerce-CodeIgniter-Bootstrap thru commit d5904379ca55014c5df34c67deda982c73dc7fe5 (on Dec 27, 2022), allows attackers to execute arbitrary code via the languages and trans_l...Show more Cross Site Scripting (XSS) vulnerability in Ecommerce-CodeIgniter-Bootstrap thru commit d5904379ca55014c5df34c67deda982c73dc7fe5 (on Dec 27, 2022), allows attackers to execute arbitrary code via the languages and trans_load parameters in file add_product.php.Show less
CVE-2022-35213 1Ecommerce Codeigniter Bootstrap Project 1Ecommerce Codeigniter Bootstrap Jun 17, 2026 Aug 18, 2022 N/A· v4 6.1 MEDIUM· v3 N/A· v2 Ecommerce-CodeIgniter-Bootstrap before commit 56465f was discovered to contain a cross-site scripting (XSS) vulnerability via the function base_url() at /blog/blogpublish.php.
CVE-2022-26624 1Ecommerce Codeigniter Bootstrap Project 1Ecommerce Codeigniter Bootstrap Jun 17, 2026 Apr 8, 2022 N/A· v4 6.1 MEDIUM· v3 4.3 MEDIUM· v2 Bootstrap v3.1.11 and v3.3.7 was discovered to contain a cross-site scripting (XSS) vulnerability via the Title parameter in /vendor/views/add_product.php.
CVE-2021-40975 1Ecommerce Codeigniter Bootstrap Project 1Ecommerce Codeigniter Bootstrap Jun 17, 2026 Oct 1, 2021 N/A· v4 6.1 MEDIUM· v3 4.3 MEDIUM· v2 Cross-site scripting (XSS) vulnerability in application/modules/admin/views/ecommerce/products.php in Ecommerce-CodeIgniter-Bootstrap (Codeigniter 3.1.11, Bootstrap 3.3.7) allows remote attackers to inject arbitrary web...Show more Cross-site scripting (XSS) vulnerability in application/modules/admin/views/ecommerce/products.php in Ecommerce-CodeIgniter-Bootstrap (Codeigniter 3.1.11, Bootstrap 3.3.7) allows remote attackers to inject arbitrary web script or HTML via the search_title parameter.Show less
CVE-2020-25093 1Ecommerce Codeigniter Bootstrap Project 1Ecommerce Codeigniter Bootstrap Jun 17, 2026 Sep 3, 2020 N/A· v4 6.1 MEDIUM· v3 4.3 MEDIUM· v2 Ecommerce-CodeIgniter-Bootstrap before 2020-08-03 allows XSS in blog.php. within application/views/templates/clothesshop, application/views/templates/onepage, and application/views/templates/redlabel.
CVE-2020-25092 1Ecommerce Codeigniter Bootstrap Project 1Ecommerce Codeigniter Bootstrap Jun 17, 2026 Sep 3, 2020 N/A· v4 6.1 MEDIUM· v3 4.3 MEDIUM· v2 Ecommerce-CodeIgniter-Bootstrap before 2020-08-03 allows XSS in _parts/header.php, within application/views/templates/clothesshop, application/views/templates/greenlabel, and application/views/templates/redlabel.
CVE-2020-25091 1Ecommerce Codeigniter Bootstrap Project 1Ecommerce Codeigniter Bootstrap Jun 17, 2026 Sep 3, 2020 N/A· v4 6.1 MEDIUM· v3 4.3 MEDIUM· v2 Ecommerce-CodeIgniter-Bootstrap before 2020-08-03 allows XSS in application/modules/vendor/views/add_product.php.
CVE-2020-25090 1Ecommerce Codeigniter Bootstrap Project 1Ecommerce Codeigniter Bootstrap Jun 17, 2026 Sep 3, 2020 N/A· v4 6.1 MEDIUM· v3 4.3 MEDIUM· v2 Ecommerce-CodeIgniter-Bootstrap before 2020-08-03 allows XSS in application/modules/admin/views/ecommerce/publish.php.
CVE-2020-25089 1Ecommerce Codeigniter Bootstrap Project 1Ecommerce Codeigniter Bootstrap Jun 17, 2026 Sep 3, 2020 N/A· v4 6.1 MEDIUM· v3 4.3 MEDIUM· v2 Ecommerce-CodeIgniter-Bootstrap before 2020-08-03 allows XSS in application/modules/admin/views/ecommerce/discounts.php.
CVE-2020-25088 1Ecommerce Codeigniter Bootstrap Project 1Ecommerce Codeigniter Bootstrap Jun 17, 2026 Sep 3, 2020 N/A· v4 6.1 MEDIUM· v3 4.3 MEDIUM· v2 Ecommerce-CodeIgniter-Bootstrap before 2020-08-03 allows XSS in application/modules/admin/views/blog/blogpublish.php.
CVE-2020-25087 1Ecommerce Codeigniter Bootstrap Project 1Ecommerce Codeigniter Bootstrap Jun 17, 2026 Sep 3, 2020 N/A· v4 6.1 MEDIUM· v3 4.3 MEDIUM· v2 Ecommerce-CodeIgniter-Bootstrap before 2020-08-03 allows XSS in application/modules/admin/views/advanced_settings/languages.php.
CVE-2020-25086 1Ecommerce Codeigniter Bootstrap Project 1Ecommerce Codeigniter Bootstrap Jun 17, 2026 Sep 3, 2020 N/A· v4 6.1 MEDIUM· v3 4.3 MEDIUM· v2 Ecommerce-CodeIgniter-Bootstrap before 2020-08-03 allows XSS in application/modules/admin/views/advanced_settings/adminUsers.php.