Doğukan Karaciğer

1 exploit Active since Feb 2026
CVE-2019-25391 EXPLOITDB HIGH text WORKING POC
Ashop Shopping Cart - SQL Injection
Ashop Shopping Cart Software contains a time-based blind SQL injection vulnerability that allows attackers to manipulate database queries through the blacklistitemid parameter. Attackers can send POST requests to the admin/bannedcustomers.php endpoint with crafted SQL payloads using SLEEP functions to extract sensitive database information.
CVSS 8.2