Phpgurukul: >> Online Shopping Portal Project >> 2.1 Security Vulnerabilities
PHPGurukul Online Shopping Portal Project v2.1 is vulnerable to SQL Injection in /shopping/login.php via the fullname parameter.
CVSS Score
6.5
EPSS Score
0.0
Published
2025-10-02
A SQL Injection vulnerability was found in /shopping/track-orders.php in PHPGurukul Online Shopping Portal v2.1, which allows remote attackers to execute arbitrary code via orderid POST request parameter.
CVSS Score
8.8
EPSS Score
0.007
Published
2025-02-14