GCVE - cpe:2.3:a:fabian:simple_shopping_cart:1.0:*:*:*:*:*:*:*

Approved changes feed: RSS · Atom

cpe:2.3:a:fabian:simple_shopping_cart:1.0:*:*:*:*:*:*:*

part: a version: 1.0 update: *

Vendor	Fabian (`fbf7922e-b691-5c28-8717-83ed5e15ae54`)
Product	Simple Shopping Cart (`14ddceaf-8c75-535b-8154-842f32f8575d`)
Edition	*
Language	*
Software edition	*
Target software	*
Target hardware	*
Other	*
Notes	Imported from NVD CPE 2.0 feed

PURL mappings

PURL	Source	Last updated
No PURL mappings for this CPE yet.

Vulnerability references

Identifier	cpeApplicability	Submitted	db.gcve.eu details	Rationale
`CVE:CVE-2025-7609`	vulnerable	2026-06-03 15:13:40.526650	code-projects Simple Shopping Cart register.php sql injection HIGH (7.3) A vulnerability has been found in code-projects Simple Shopping Cart 1.0 and classified as critical. Affected by this vulnerability is an unknown functionality of the file /register.php. The manipulation of the argument ruser_email leads to sql injection. The attack can be launched remotely. The exploit has been disclosed to the public and may be used. Published: 2025-07-14T13:44:05.604Z Updated: 2025-07-14T13:58:20.950Z Open on db.gcve.eu Reference links https://vuldb.com/?id.316309 https://vuldb.com/?ctiid.316309 https://vuldb.com/?submit.615360 https://github.com/zzb1388/cve/issues/18 https://code-projects.org/	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2025-7608`	vulnerable	2026-06-03 15:13:40.526128	code-projects Simple Shopping Cart userlogin.php sql injection HIGH (7.3) A vulnerability, which was classified as critical, was found in code-projects Simple Shopping Cart 1.0. Affected is an unknown function of the file /userlogin.php. The manipulation of the argument user_email leads to sql injection. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used. Published: 2025-07-14T13:32:05.874Z Updated: 2025-07-15T19:51:46.007Z Open on db.gcve.eu Reference links https://vuldb.com/?id.316308 https://vuldb.com/?ctiid.316308 https://vuldb.com/?submit.615359 https://github.com/zzb1388/cve/issues/19 https://code-projects.org/	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2025-7607`	vulnerable	2026-06-03 15:13:40.525521	code-projects Simple Shopping Cart save_order.php sql injection HIGH (7.3) A vulnerability, which was classified as critical, has been found in code-projects Simple Shopping Cart 1.0. This issue affects some unknown processing of the file /Customers/save_order.php. The manipulation of the argument order_price leads to sql injection. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used. Published: 2025-07-14T13:14:05.755Z Updated: 2025-07-14T13:40:48.332Z Open on db.gcve.eu Reference links https://vuldb.com/?id.316307 https://vuldb.com/?ctiid.316307 https://vuldb.com/?submit.615358 https://github.com/zzb1388/cve/issues/20 https://code-projects.org/	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2025-14248`	vulnerable	2026-06-03 14:58:54.972031	code-projects Simple Shopping Cart adminlogin.php sql injection HIGH (7.3) A vulnerability was identified in code-projects Simple Shopping Cart 1.0. Impacted is an unknown function of the file /adminlogin.php. The manipulation of the argument admin_username leads to sql injection. The attack is possible to be carried out remotely. The exploit is publicly available and might be used. Published: 2025-12-08T14:32:07.760Z Updated: 2025-12-08T17:10:51.019Z Open on db.gcve.eu Reference links https://vuldb.com/?id.334758 https://vuldb.com/?ctiid.334758 https://vuldb.com/?submit.702464 https://github.com/zzb1388/cve/issues/92 https://code-projects.org/	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2025-14247`	vulnerable	2026-06-03 14:58:54.971568	code-projects Simple Shopping Cart additems.php sql injection MEDIUM (6.3) A vulnerability was determined in code-projects Simple Shopping Cart 1.0. This issue affects some unknown processing of the file /Admin/additems.php. Executing manipulation of the argument item_name can lead to sql injection. The attack can be executed remotely. The exploit has been publicly disclosed and may be utilized. Published: 2025-12-08T14:02:10.058Z Updated: 2025-12-08T17:10:58.494Z Open on db.gcve.eu Reference links https://vuldb.com/?id.334757 https://vuldb.com/?ctiid.334757 https://vuldb.com/?submit.702463 https://github.com/zzb1388/cve/issues/91 https://code-projects.org/	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2025-14246`	vulnerable	2026-06-03 14:58:54.971000	code-projects Simple Shopping Cart settings.php sql injection MEDIUM (6.3) A vulnerability was found in code-projects Simple Shopping Cart 1.0. This vulnerability affects unknown code of the file /Customers/settings.php. Performing manipulation of the argument user_id results in sql injection. Remote exploitation of the attack is possible. The exploit has been made public and could be used. Published: 2025-12-08T13:32:05.472Z Updated: 2025-12-08T14:01:59.107Z Open on db.gcve.eu Reference links https://vuldb.com/?id.334756 https://vuldb.com/?ctiid.334756 https://vuldb.com/?submit.702461 https://github.com/zzb1388/cve/issues/90 https://code-projects.org/	Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.