Janobe E-Commerce System vulnerabilities

CVE-2024-8089 [MEDIUM] CWE-434 CVE-2024-8089: A vulnerability was found in SourceCodester E-Commerce System 1.0. It has been classified as critica A vulnerability was found in SourceCodester E-Commerce System 1.0. It has been classified as critical. Affected is an unknown function of the file /ecommerce/admin/products/controller.php. The manipulation of the argument photo leads to unrestricted upload. It is possible to launch the attack remotely. The exploit has been disclosed to the public and

CVE-2024-8087 [MEDIUM] CWE-89 CVE-2024-8087: A vulnerability was found in SourceCodester E-Commerce System 1.0 and classified as critical. This i A vulnerability was found in SourceCodester E-Commerce System 1.0 and classified as critical. This issue affects some unknown processing of the file /ecommerce/popup_Item.php. The manipulation of the argument id leads to sql injection. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used.

CVE-2024-8086 [MEDIUM] CWE-89 CVE-2024-8086: A vulnerability has been found in SourceCodester E-Commerce System 1.0 and classified as critical. T A vulnerability has been found in SourceCodester E-Commerce System 1.0 and classified as critical. This vulnerability affects unknown code of the file /ecommerce/admin/login.php of the component Admin Login. The manipulation of the argument user_email leads to sql injection. The attack can be initiated remotely. The exploit has been disclosed to the pu