CVSS: 9.8EPSS: 0%CPEs: 1EXPL: 1CVE-2021-43110
https://notcve.org/view.php?id=CVE-2021-43110
An Access Conrol vulnerability exists in PuneethReddyHC online-shopping-system as of 11/01/2021 in add_products. se presenta una vulnerabilidad de control de acceso en PuneethReddyHC online-shopping-system a partir del 11/01/2021 en add_products • https://github.com/PuneethReddyHC/online-shopping-system/issues/17 •
CVSS: 7.5EPSS: 0%CPEs: 1EXPL: 1CVE-2021-43109
https://notcve.org/view.php?id=CVE-2021-43109
An SQL Injection vulnerability exits in PuneethReddyHC online-shopping-system as of 11/01/2021 via the p parameter in product.php. Se presenta una vulnerabilidad de inyección SQL en PuneethReddyHC online-shopping-system a partir del 11/01/2021 por medio del parámetro p en el archivo product.php • https://github.com/PuneethReddyHC/online-shopping-system/issues/17 • CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') •