Online Pet Shop We App Project

online_pet_shop_we_app_project

8 CVEs • 1 product

Products (1)

Click to collapse

Toggle

Online Pet Shop We App

online_pet_shop_we_app

CVEs (8)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2023-1042 1Online Pet Shop We App Project 1Online Pet Shop We App Nov 21, 2024 Feb 26, 2023 N/A· v4 6.1 MEDIUM· v3 4.0 MEDIUM· v2 A vulnerability has been found in SourceCodester Online Pet Shop We App 1.0 and classified as problematic. This vulnerability affects unknown code of the file /pet_shop/admin/orders/update_status.php. The manipulation of...Show more A vulnerability has been found in SourceCodester Online Pet Shop We App 1.0 and classified as problematic. This vulnerability affects unknown code of the file /pet_shop/admin/orders/update_status.php. The manipulation of the argument oid with the input 1"><script>alert(1111)</script> leads to cross site scripting. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used. The identifier of this vulnerability is VDB-221800.Show less
CVE-2022-39978 1Online Pet Shop We App Project 1Online Pet Shop We App May 7, 2025 Oct 27, 2022 N/A· v4 7.2 HIGH· v3 N/A· v2 Online Pet Shop We App v1.0 was discovered to contain an arbitrary file upload vulnerability via the Editing function in the Product List module. This vulnerability allows attackers to execute arbitrary code via a crafte...Show more Online Pet Shop We App v1.0 was discovered to contain an arbitrary file upload vulnerability via the Editing function in the Product List module. This vulnerability allows attackers to execute arbitrary code via a crafted PHP file uploaded through the picture upload point.Show less
CVE-2022-39977 1Online Pet Shop We App Project 1Online Pet Shop We App May 7, 2025 Oct 27, 2022 N/A· v4 7.2 HIGH· v3 N/A· v2 Online Pet Shop We App v1.0 was discovered to contain an arbitrary file upload vulnerability via the Editing function in the User module. This vulnerability allows attackers to execute arbitrary code via a crafted PHP fi...Show more Online Pet Shop We App v1.0 was discovered to contain an arbitrary file upload vulnerability via the Editing function in the User module. This vulnerability allows attackers to execute arbitrary code via a crafted PHP file uploaded through the picture upload point.Show less
CVE-2022-41408 1Online Pet Shop We App Project 1Online Pet Shop We App May 19, 2025 Oct 12, 2022 N/A· v4 9.8 CRITICAL· v3 N/A· v2 Online Pet Shop We App v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /admin/?page=orders/view_order.
CVE-2022-41407 1Online Pet Shop We App Project 1Online Pet Shop We App May 19, 2025 Oct 12, 2022 N/A· v4 7.2 HIGH· v3 N/A· v2 Online Pet Shop We App v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /admin/?page=orders/view_order.
CVE-2022-41378 1Online Pet Shop We App Project 1Online Pet Shop We App Nov 21, 2024 Oct 7, 2022 N/A· v4 7.2 HIGH· v3 N/A· v2 Online Pet Shop We App v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /pet_shop/admin/?page=inventory/manage_inventory.
CVE-2022-41377 1Online Pet Shop We App Project 1Online Pet Shop We App Nov 21, 2024 Oct 7, 2022 N/A· v4 7.2 HIGH· v3 N/A· v2 Online Pet Shop We App v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /pet_shop/admin/?page=maintenance/manage_category.
CVE-2021-35458 1Online Pet Shop We App Project 1Online Pet Shop We App Nov 21, 2024 Jul 30, 2021 N/A· v4 9.8 CRITICAL· v3 7.5 HIGH· v2 Online Pet Shop We App 1.0 is vulnerable to Union SQL Injection in products.php (aka p=products) via the c or s parameter.