CVE-2026-5635 | PHPGurukul Online Shopping Portal Project 2.1 Parameter categorywise-products.php cid sql injection

Inserito da Angelo Barbosa | Apr 5, 2026 | CVE

A vulnerability was found in PHPGurukul Online Shopping Portal Project 2.1 and classified as critical. Affected by this issue is some unknown functionality of the file /categorywise-products.php of the component Parameter Handler. The manipulation of the argument cid results in sql injection.

This vulnerability is reported as CVE-2026-5635. The attack can be launched remotely. Moreover, an exploit is present.

CVE-2026-5635 | PHPGurukul Online Shopping Portal Project 2.1 Parameter categorywise-products.php cid sql injection

Post correlati

CVE-2023-33094 | Qualcomm 4 Gen 1 Mobile Platform VK Synchronization memory corruption

CVE-2023-46282 | Siemens Opcenter Quality cross site scripting (ssa-999588)

CVE-2023-29080 | Revenera InstallShield prior 2021 R2/2022 R2 InstallScript file access

CVE-2026-25582 | InternationalColorConsortium iccDEV 2.3.1.1/2.3.1.2 CIccIO::WriteUInt16Float heap-based overflow (ID 559)