CVE-2026-2865 | itsourcecode Agri-Trading Online Shopping System 1.0 HTTP POST Request productcontroller.php Product sql injection

Inserito da Angelo Barbosa | Feb 20, 2026 | CVE

A vulnerability, which was classified as critical, has been found in itsourcecode Agri-Trading Online Shopping System 1.0. This impacts an unknown function of the file admin/productcontroller.php of the component HTTP POST Request Handler. Performing a manipulation of the argument Product results in sql injection.

This vulnerability was named CVE-2026-2865. The attack may be initiated remotely. In addition, an exploit is available.

CVE-2026-2865 | itsourcecode Agri-Trading Online Shopping System 1.0 HTTP POST Request productcontroller.php Product sql injection

Post correlati

CVE-2024-32446 | WP Swings Wallet System for WooCommerce Plugin up to 2.5.9 on WordPress cross-site request forgery

CVE-2024-29838 | CS Technologies Australia Evolution Controller up to 2.04.560.31.03.2024 Web Interface uninitialized variable

CVE-2025-60868 | Statamic Alt Redirect Addon 1.6.3 Query String Strip denial of service

CVE-2017-13308 | Google Android mtk_ts_Abts.c tscpu_write_GPIO_out/mtkts_Abts_write buffer overflow