CVE-2024-4826
SQL injection vulnerability in Simple PHP Shopping Cart
SQL injection vulnerability in Simple PHP Shopping Cart affecting version 0.9. This vulnerability could allow an attacker to retrieve all the information stored in the database by sending a specially crafted SQL query, due to the lack of proper sanitisation of the category_id parameter in the category.php file.
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
Productos afectados
Asaancart · Simple PHP Shopping Cart¿Quieres saber si tu infraestructura está expuesta a esto?
Hablar con TrueHacking →