CVE-2024-4826
SQL injection vulnerability in Simple PHP Shopping Cart
SQL injection vulnerability in Simple PHP Shopping Cart affecting version 0.9. This vulnerability could allow an attacker to retrieve all the information stored in the database by sending a specially crafted SQL query, due to the lack of proper sanitisation of the category_id parameter in the category.php file.
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
Produtos afetados
Asaancart · Simple PHP Shopping CartQuer saber se a sua infraestrutura está exposta a isto?
Falar com a TrueHacking →