CVE-2026-5560 | PHPGurukul Online Shopping Portal Project 2.1 Parameter /payment-method.php paymethod sql injection

Inserito da Angelo Barbosa | Apr 4, 2026 | CVE

A vulnerability identified as critical has been detected in PHPGurukul Online Shopping Portal Project 2.1. The impacted element is an unknown function of the file /payment-method.php of the component Parameter Handler. Performing a manipulation of the argument paymethod results in sql injection.

This vulnerability is cataloged as CVE-2026-5560. It is possible to initiate the attack remotely. Furthermore, there is an exploit available.

CVE-2026-5560 | PHPGurukul Online Shopping Portal Project 2.1 Parameter /payment-method.php paymethod sql injection

Post correlati

CVE-2023-52091 | Trend Micro Apex One Anti-Spyware Engine link following

CVE-2022-28339 | Trend Micro HouseCall for Home Networks up to 5.3.1302 uncontrolled search path (ZDI-22-620)

CVE-2025-1005 | xpeedstudio ElementsKit Elementor Addons Plugin up to 3.4.0 on WordPress Image Accordion Widget cross site scripting

CVE-2025-12405 | Google Looker Studio 2025-07-07 privileges management (gcp-2025-053)