{"id":7587,"date":"2025-07-04T15:34:05","date_gmt":"2025-07-04T15:34:05","guid":{"rendered":"http:\/\/localhost\/?p=7587"},"modified":"2025-07-04T15:34:05","modified_gmt":"2025-07-04T15:34:05","slug":"kashipara-online-furniture-shopping-ecommerce-website-prodlistphp-sql-injection","status":"publish","type":"post","link":"https:\/\/zero.redgem.net\/?p=7587","title":{"rendered":"Kashipara Online Furniture Shopping Ecommerce Website prodList.php sql injection"},"content":{"rendered":"
\n

CVE Details<\/h2>\n
\n
\n

Basic Information<\/h3>\n\n\n\n\n\n
Title<\/th>\nKashipara Online Furniture Shopping Ecommerce Website prodList.php sql injection<\/td>\n<\/tr>\n
Type<\/th>\ncve<\/td>\n<\/tr>\n
Published<\/th>\n2024-04-23T22:00:05.602Z<\/td>\n<\/tr>\n
Modified<\/th>\n2024-08-01T20:26:57.264Z<\/td>\n<\/tr>\n<\/table>\n<\/div>\n
\n

Product Information<\/h3>\n\n\n\n\n
Vendor<\/th>\nKashipara<\/td>\n<\/tr>\n
Product<\/th>\nOnline Furniture Shopping Ecommerce Website<\/td>\n<\/tr>\n
Version<\/th>\n1.0<\/td>\n<\/tr>\n<\/table>\n<\/div>\n<\/div>\n
\n

CVSS Information<\/h3>\n\n\n\n
Base Score<\/th>\n6.3 (MEDIUM)<\/td>\n<\/tr>\n
Attack Vector<\/th>\nCVSS:3.1\/AV:N\/AC:L\/PR:L\/UI:N\/S:U\/C:L\/I:L\/A:L<\/td>\n<\/tr>\n<\/table>\n<\/div>\n
\n

AI Analysis<\/h3>\n\n\n\n\n\n\n
AI Description<\/th>\nA SQL injection vulnerability was discovered in Kashipara’s Online Furniture Shopping Ecommerce Website version 1.0. This issue affects the prodList.php file, allowing remote attackers to inject malicious SQL code via the prodType argument. The vulnerability is considered critical and has been publicly disclosed.<\/td>\n<\/tr>\n
AI Severity<\/th>\nMedium<\/td>\n<\/tr>\n
AI Vendor<\/th>\nKashipara<\/td>\n<\/tr>\n
AI Product<\/th>\nOnline Furniture Shopping Ecommerce Website<\/td>\n<\/tr>\n
AI Version<\/th>\n1.0<\/td>\n<\/tr>\n<\/table>\n<\/div>\n
\n

Affected Products<\/h4>\n