A vulnerability was found in kurniaramadhan E-Commerce-PHP 1.0. It has been classified as problematic. Affected is an unknown function. The manipulation leads to cross-site request forgery. It is possible to launch the attack remotely. The vendor was contacted early about this disclosure but did not respond in any way.
References
Link | Resource |
---|---|
https://vuldb.com/?ctiid.290796 | Permissions Required VDB Entry |
https://vuldb.com/?id.290796 | Third Party Advisory VDB Entry |
https://www.websecurityinsights.my.id/2024/12/ecommerce-php-by-kurniaramadhan-sql.html?m=1 | Exploit Third Party Advisory |
https://www.websecurityinsights.my.id/2024/12/ecommerce-php-by-kurniaramadhan-sql.html?m=1 | Exploit Third Party Advisory |
Configurations
History
02 Jul 2025, 19:10
Type | Values Removed | Values Added |
---|---|---|
First Time |
Kurniaramadhan
Kurniaramadhan e-commerce-php |
|
References | () https://vuldb.com/?ctiid.290796 - Permissions Required, VDB Entry | |
References | () https://vuldb.com/?id.290796 - Third Party Advisory, VDB Entry | |
References | () https://www.websecurityinsights.my.id/2024/12/ecommerce-php-by-kurniaramadhan-sql.html?m=1 - Exploit, Third Party Advisory | |
CPE | cpe:2.3:a:kurniaramadhan:e-commerce-php:1.0:*:*:*:*:*:*:* |
09 Jan 2025, 17:15
Type | Values Removed | Values Added |
---|---|---|
References | () https://www.websecurityinsights.my.id/2024/12/ecommerce-php-by-kurniaramadhan-sql.html?m=1 - | |
Summary |
|
09 Jan 2025, 03:15
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2025-01-09 03:15
Updated : 2025-07-02 19:10
NVD link : CVE-2024-13203
Mitre link : CVE-2024-13203
CVE.ORG link : CVE-2024-13203
JSON object : View
Products Affected
kurniaramadhan
- e-commerce-php