CVE-2026-14639
MEDIUM
NVD
CVSS Score
6.3
Severity
MEDIUM
Published
Jul 04, 2026
Vendor
unknown
Description
A vulnerability has been found in CodeAstro Ecommerce Website 1.0. This impacts an unknown function of the file /ecommerce-website-php/customer/my_account.php?edit_account. Such manipulation of the argument c_name leads to sql injection. The attack may be launched remotely. The exploit has been disclosed to the public and may be used.