CVE-2026-5636 | PHPGurukul Online Shopping Portal Project 2.1 Parameter /cancelorder.php oid sql injection

Inserito da Angelo Barbosa | Apr 5, 2026 | CVE

A vulnerability was found in PHPGurukul Online Shopping Portal Project 2.1. It has been classified as critical. This affects an unknown part of the file /cancelorder.php of the component Parameter Handler. This manipulation of the argument oid causes sql injection.

This vulnerability appears as CVE-2026-5636. The attack may be initiated remotely. In addition, an exploit is available.

CVE-2026-5636 | PHPGurukul Online Shopping Portal Project 2.1 Parameter /cancelorder.php oid sql injection

Post correlati

CVE-2025-65955 | ImageMagick up to 6.9.13-33/7.1.2-8 Magick++ Layer Options::fontFamily double free (GHSA-q3hc-j9x5-mp9m)

CVE-2025-1885 | Restajet Online Food Delivery System up to 19122025 redirect

CVE-2024-3431 | EyouCMS 1.6.5 Backend login.php channel_id deserialization

CVE-2023-6154 | Bitdefender Total Security 27.0.25.114 seccenter.exe unknown vulnerability