← Back

Online Pet Shop We App

online_pet_shop_we_app

Vendor: Online Pet Shop We App Project • 8 CVEs

CVEs (8)

CVE
VENDORS
PRODUCTS
UPDATED
PUBLISHED
CVSS
CVE-2023-1042
1Online Pet Shop We App Project
1Online Pet Shop We App
Nov 21, 2024
Feb 26, 2023
N/A· v4
6.1 MEDIUM· v3
4.0 MEDIUM· v2
A vulnerability has been found in SourceCodester Online Pet Shop We App 1.0 and classified as problematic. This vulnerability affects unknown code of the file /pet_shop/admin/orders/update_status.php. The manipulation of...Show more
A vulnerability has been found in SourceCodester Online Pet Shop We App 1.0 and classified as problematic. This vulnerability affects unknown code of the file /pet_shop/admin/orders/update_status.php. The manipulation of the argument oid with the input 1"><script>alert(1111)</script> leads to cross site scripting. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used. The identifier of this vulnerability is VDB-221800.Show less
CVE-2022-39978
1Online Pet Shop We App Project
1Online Pet Shop We App
May 7, 2025
Oct 27, 2022
N/A· v4
7.2 HIGH· v3
N/A· v2
Online Pet Shop We App v1.0 was discovered to contain an arbitrary file upload vulnerability via the Editing function in the Product List module. This vulnerability allows attackers to execute arbitrary code via a crafte...Show more
Online Pet Shop We App v1.0 was discovered to contain an arbitrary file upload vulnerability via the Editing function in the Product List module. This vulnerability allows attackers to execute arbitrary code via a crafted PHP file uploaded through the picture upload point.Show less
CVE-2022-39977
1Online Pet Shop We App Project
1Online Pet Shop We App
May 7, 2025
Oct 27, 2022
N/A· v4
7.2 HIGH· v3
N/A· v2
Online Pet Shop We App v1.0 was discovered to contain an arbitrary file upload vulnerability via the Editing function in the User module. This vulnerability allows attackers to execute arbitrary code via a crafted PHP fi...Show more
Online Pet Shop We App v1.0 was discovered to contain an arbitrary file upload vulnerability via the Editing function in the User module. This vulnerability allows attackers to execute arbitrary code via a crafted PHP file uploaded through the picture upload point.Show less
CVE-2022-41408
1Online Pet Shop We App Project
1Online Pet Shop We App
May 19, 2025
Oct 12, 2022
N/A· v4
9.8 CRITICAL· v3
N/A· v2
Online Pet Shop We App v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /admin/?page=orders/view_order.
CVE-2022-41407
1Online Pet Shop We App Project
1Online Pet Shop We App
May 19, 2025
Oct 12, 2022
N/A· v4
7.2 HIGH· v3
N/A· v2
Online Pet Shop We App v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /admin/?page=orders/view_order.
CVE-2022-41378
1Online Pet Shop We App Project
1Online Pet Shop We App
Nov 21, 2024
Oct 7, 2022
N/A· v4
7.2 HIGH· v3
N/A· v2
Online Pet Shop We App v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /pet_shop/admin/?page=inventory/manage_inventory.
CVE-2022-41377
1Online Pet Shop We App Project
1Online Pet Shop We App
Nov 21, 2024
Oct 7, 2022
N/A· v4
7.2 HIGH· v3
N/A· v2
Online Pet Shop We App v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /pet_shop/admin/?page=maintenance/manage_category.
CVE-2021-35458
1Online Pet Shop We App Project
1Online Pet Shop We App
Nov 21, 2024
Jul 30, 2021
N/A· v4
9.8 CRITICAL· v3
7.5 HIGH· v2
Online Pet Shop We App 1.0 is vulnerable to Union SQL Injection in products.php (aka p=products) via the c or s parameter.