Search Results | AttackerKB

Show filters

Clear All

Disclosure Year Disclosure Month

Collection Command and Control Credential Access Defense Evasion Discovery Execution Exfiltration Impact Initial Access Lateral Movement Persistence Privilege Escalation

2 Total Results

Displaying 1-2 of 2

Attacker Value

Unknown

CVE-2021-43158

Disclosure Date: December 22, 2021 (last updated February 23, 2025)

In ProjectWorlds Online Shopping System PHP 1.0, a CSRF vulnerability in cart_remove.php allows a remote attacker to remove any product in the customer's cart.

Attacker Value

Unknown

CVE-2021-43157

Disclosure Date: December 22, 2021 (last updated February 23, 2025)

Projectsworlds Online Shopping System PHP 1.0 is vulnerable to SQL injection via the id parameter in cart_remove.php.

Attack Vector: Network Privileges: None User Interaction: None

2 Total Results

Displaying 1-2 of 2

Unknown

CVE-2021-43158

Unknown

CVE-2021-43157

Quick Cookie Notification