exploitDog

GHSA-7f7m-6q4m-6c82

Опубликовано: 01 мая 2022

Источник: github

Github: Не прошло ревью

Описание

SQL injection vulnerability in lshop.cgi in Cosmoshop 8.11.106 and earlier allows remote attackers to execute arbitrary SQL commands via the artnum parameter.

SQL injection vulnerability in lshop.cgi in Cosmoshop 8.11.106 and earlier allows remote attackers to execute arbitrary SQL commands via the artnum parameter.

Ссылки

EPSS

Процентиль: 74%

0.00799

Низкий

CVE ID

Связанные уязвимости

CVE-2006-2474

nvd

больше 19 лет назад

SQL injection vulnerability in lshop.cgi in Cosmoshop 8.11.106 and earlier allows remote attackers to execute arbitrary SQL commands via the artnum parameter.

EPSS

Процентиль: 74%

0.00799

Низкий

CVE ID