This page lists publicly disclosed CVE vulnerabilities affecting janobe simple_e-commerce_bookstore (linked via NVD CPE). Each row includes severity scores, summaries, and publication dates to help identify and analyze security issues.
| CVE | Summary | Source | Max CVSS | EPSS % | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2025-11480 | A vulnerability was detected in SourceCodester Simple E-Commerce Bookstore 1.0. The affected element is an unknown function of the file /register.php. Performing manipulation of the argument register_username results in sql injection. The attack is possible to be carried out remotely. The exploit is now public and may be used. | [email protected] | 5.5 | 0.38% | 2025-10-08 | 2026-06-17 |
| CVE-2025-11476 | A vulnerability was identified in SourceCodester Simple E-Commerce Bookstore 1.0. This affects an unknown part of the file /index.php. The manipulation of the argument login_username leads to sql injection. The attack may be initiated remotely. The exploit is publicly available and might be used. | [email protected] | 5.5 | 0.38% | 2025-10-08 | 2026-06-17 |
| CVE-2025-11430 | A vulnerability was found in SourceCodester Simple E-Commerce Bookstore 1.0. The affected element is an unknown function of the file /cart.php. The manipulation of the argument remove results in sql injection. The attack can be executed remotely. The exploit has been made public and could be used. | [email protected] | 5.5 | 0.38% | 2025-10-08 | 2026-06-17 |