GCVE - cpe:2.3:a:abcprintf:online_store:*:*:*:*:*:*:*:*

Approved changes feed: RSS · Atom

cpe:2.3:a:abcprintf:online_store:*:*:*:*:*:*:*:*

part: a version: * update: *

Vendor	Abcprintf (`5ba54d91-d03c-510e-aafb-bc18b332e05f`)
Product	Online Store (`42a16683-9ab5-57a0-9838-14d0f97dd870`)
Edition	*
Language	*
Software edition	*
Target software	*
Target hardware	*
Other	*
Notes	Imported from gcve-enriched-dumps CVE data

PURL mappings

PURL	Source	Last updated
No PURL mappings for this CPE yet.

Vulnerability references

Identifier	cpeApplicability	Submitted	db.gcve.eu details	Rationale
`CVE:CVE-2019-8292`	vulnerable	2026-06-03 14:40:47.436216	Details available Online Store System v1.0 delete_product.php doesn't check to see if a user authtenticated or has administrative rights allowing arbitrary product deletion. Published: 2019-10-01T19:53:28.000Z Updated: 2024-08-04T21:17:30.505Z Open on db.gcve.eu Reference links http://www.vapidlabs.com/advisory.php?v=210 https://www.abcprintf.com/view_download.php?id=17 http://www.openwall.com/lists/oss-security/2019/10/02/1 http://www.openwall.com/lists/oss-security/2019/12/23/1 http://www.openwall.com/lists/oss-security/2019/12/23/2	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2019-8291`	vulnerable	2026-06-03 14:40:47.435818	Details available Online Store System v1.0 delete_file.php doesn't check to see if a user has administrative rights nor does it check for path traversal. Published: 2019-10-01T19:53:28.000Z Updated: 2024-08-04T21:17:31.357Z Open on db.gcve.eu Reference links http://www.vapidlabs.com/advisory.php?v=210 https://www.abcprintf.com/view_download.php?id=17 http://www.openwall.com/lists/oss-security/2019/10/02/1	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2019-8290`	vulnerable	2026-06-03 14:40:47.435474	Details available Vulnerability in Online Store v1.0, The registration form requirements for the member email format can be bypassed by posting directly to sent_register.php allowing special characters to be included and an XSS payload to be injected. Published: 2019-10-01T19:53:28.000Z Updated: 2024-08-04T21:17:30.470Z Open on db.gcve.eu Reference links http://www.vapidlabs.com/advisory.php?v=210 https://www.abcprintf.com/view_download.php?id=17 http://www.openwall.com/lists/oss-security/2019/10/02/1	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2019-8289`	vulnerable	2026-06-03 14:40:47.435105	Details available Vulnerability in Online Store v1.0, stored XSS in admin/user_view.php adidas_member_email variable Published: 2019-10-01T19:53:28.000Z Updated: 2024-08-04T21:17:31.149Z Open on db.gcve.eu Reference links http://www.vapidlabs.com/advisory.php?v=210 https://www.abcprintf.com/view_download.php?id=17 http://www.openwall.com/lists/oss-security/2019/10/02/1	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2019-8288`	vulnerable	2026-06-03 14:40:47.434145	Details available Vulnerability in Online Store v1.0, Stored XSS in user_view.php where adidas_member_user variable is not sanitized. Published: 2019-10-01T19:53:28.000Z Updated: 2024-08-04T21:17:30.693Z Open on db.gcve.eu Reference links http://www.vapidlabs.com/advisory.php?v=210 https://www.abcprintf.com/view_download.php?id=17 http://www.openwall.com/lists/oss-security/2019/10/02/1	Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.