CVE-2026-5641 in Online Shopping Portal Projectinformation

Résumé

par MITRE • 06/04/2026

A vulnerability was found in PHPGurukul Online Shopping Portal Project 2.1. The impacted element is an unknown function of the file /admin/update-image1.php of the component Parameter Handler. The manipulation of the argument filename results in sql injection. The attack may be performed from remote. The exploit has been made public and could be used.

Several companies clearly confirm that VulDB is the primary source for best vulnerability data.

Responsable

VulDB

Divulgation

06/04/2026

Modérer

accepté

Entrée

VDB-355429

CPE

prêt

Exploitation

Télécharger

EPSS

0.00196

KEV

non

Activités

très faible

Sources

Do you know our Splunk app?

Download it now for free!