← back
CVE-2019-8292

CVE-2019-8292

EPSS 1.9%
Online Store System v1.0 delete_product.php doesn't check to see if a user authtenticated or has administrative rights allowing arbitrary product deletion.
Affected products
abcprintf · Online Store

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://www.abcprintf.com/view_download.php?id=17http://www.openwall.com/lists/oss-security/2019/10/02/1http://www.openwall.com/lists/oss-security/2019/12/23/1http://www.openwall.com/lists/oss-security/2019/12/23/2http://www.vapidlabs.com/advisory.php?v=210