A vulnerability was found in code-projects E-Commerce Website 1.0. It has been rated as critical. Affected by this issue is some unknown functionality of the file user_signup.php. The manipulation of the argument firstname/middlename/email/address/contact/username leads to sql injection.
This vulnerability is handled as CVE-2023-7107. The attack may be launched remotely. There is no exploit available.