Online Shopping Alphaware Project: >> Online Shopping Alphaware >> 1.0 Security Vulnerabilities
The id paramater in Online Shopping Alphaware 1.0 has been discovered to be vulnerable to an Error-Based blind SQL injection in the /alphaware/details.php path. This allows an attacker to retrieve all databases.
CVSS Score
7.5
EPSS Score
0.013
Published
2021-06-02
A SQL injection vulnerability in SourceCodester Online Shopping Alphaware 1.0 allows remote unauthenticated attackers to bypass the authentication process via email and password parameters.
CVSS Score
9.8
EPSS Score
0.035
Published
2020-08-17