Approved changes feed: RSS · Atom

cpe:2.3:a:wecodex:online_store_system_cms:*:*:*:*:*:*:*:*

part: a version: * update: *

VendorWecodex (58fc4510-caba-51d0-9df4-af771a3c2851)
ProductOnline Store System Cms (0acecb11-7b88-5e50-b98f-24529e436e7d)
Edition*
Language*
Software edition*
Target software*
Target hardware*
Other*
NotesImported from gcve-enriched-dumps CVE data

PURL mappings

PURLSourceLast updated
No PURL mappings for this CPE yet.

Vulnerability references

IdentifiercpeApplicabilitySubmitteddb.gcve.eu detailsRationale
CVE:CVE-2018-25203 vulnerable 2026-06-08 05:11:29.568938 Online Store System CMS 1.0 SQL Injection via clientaccess
HIGH (8.2)
Online Store System CMS 1.0 contains an SQL injection vulnerability that allows unauthenticated attackers to manipulate database queries by injecting SQL code through the email parameter. Attackers can send POST requests to index.php with the action=clientaccess parameter using boolean-based blind or time-based blind SQL injection payloads in the email field to extract sensitive database information.
Published: 2026-03-26T11:39:51.055Z
Updated: 2026-03-26T15:02:07.192Z
Reference links
Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.