Описание
SQL injection vulnerability in block_forum_topic_new.php in ViArt Shop Free 2.5.5, and possibly other distributions including Light, Standard, and Enterprise, might allow remote attackers to execute arbitrary SQL commands via unknown vectors, probably involving the forum_id parameter.
Ссылки
- URL Repurposed
- URL Repurposed
Уязвимые конфигурации
Конфигурация 1
Одно из
cpe:2.3:a:viart_ltd:viart_shop_free:2.5.5_enterprise:*:*:*:*:*:*:*
cpe:2.3:a:viart_ltd:viart_shop_free:2.5.5_light:*:*:*:*:*:*:*
cpe:2.3:a:viart_ltd:viart_shop_free:2.5.5_standard:*:*:*:*:*:*:*
EPSS
Процентиль: 65%
0.00487
Низкий
7.5 High
CVSS2
Дефекты
NVD-CWE-Other
Связанные уязвимости
github
почти 4 года назад
SQL injection vulnerability in block_forum_topic_new.php in ViArt Shop Free 2.5.5, and possibly other distributions including Light, Standard, and Enterprise, might allow remote attackers to execute arbitrary SQL commands via unknown vectors, probably involving the forum_id parameter.
EPSS
Процентиль: 65%
0.00487
Низкий
7.5 High
CVSS2
Дефекты
NVD-CWE-Other